4 matches found
CVE-2019-3565
Legacy C++ Facebook Thrift servers using cpp instead of cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service...
CVE-2019-3565
Legacy C++ Facebook Thrift servers using cpp instead of cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service...
CVE-2019-3565
Legacy C++ Facebook Thrift servers using cpp instead of cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service...
CVE-2019-3565
Summary: CVE-2019-3565 affects legacy Facebook Thrift servers (cpp, not cpp2). The root cause is that servers would not error when receiving messages containing containers of fields with unknown types, enabling malicious clients to send short messages that force long parsing times and cause denia...