Lucene search

K

PRIOn knowledge basePRION:CVE-2009-2629

HistorySep 15, 2009 - 10:30 p.m.

Buffer overflow

2009-09-1522:30:00

PRIOn knowledge base

www.prio-n.com

5

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.938 High

EPSS

Percentile

99.1%

Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.15 allows remote attackers to execute arbitrary code via crafted HTTP requests.

CPENameOperatorVersion
debian_linuxeq5.0
debian_linuxeq4.0
debian_linuxeq6.0
nginxge0.1.0
nginxlt0.5.38
nginxge0.6.0
nginxlt0.6.39
nginxge0.7.0
nginxlt0.7.62
nginxge0.8.0

Rows per page:

1-10 of 141

References

nginx.net/CHANGES

nginx.net/CHANGES-0.5

nginx.net/CHANGES-0.6

nginx.net/CHANGES-0.7

sysoev.ru/nginx/patch.180065.txt

www.debian.org/security/2009/dsa-1884

www.kb.cert.org/vuls/id/180065

www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html

www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html

www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.938 High

EPSS

Percentile

99.1%

Related for PRION:CVE-2009-2629

seebug1 nessus9 debian1 freebsd1 securityvulns2 openvas19 nginx1 ubuntucve1 debiancve1 gentoo1 fedora5 cve1 cert1 canvas1 checkpoint_advisories1