14 matches found
ROS-20260524-73-0056
A vulnerability in the ngxresolvercopy function of the nginx server is related to a single offset error resulting from writing a dot character '.', 0x2E outside of the heap buffer. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code or cause a denia...
MiracleLinux 8 : nginx:1.20 (AXSA:2022-3028:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3028:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...
CLSA-2022-1646085758 Fix of CVE: CVE-2021-23017
CVE-2021-23017: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name...
CLSA-2022-1646060645 Fix of CVE: CVE-2021-23017
CVE-2021-23017: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name...
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote code execution in...
CLSA-2021-1634922789 Fixed CVE-2021-23017 in nginx
Fixed CVE-2021-23017 : Off-by-one in ngxresolvercopy when - labels are followed by a pointer to a root domain name...
CLSA-2021-1632261741 Fix of CVE: CVE-2021-23017
Fixed CVE-2021-23017 : Off-by-one in ngxresolvercopy when - labels are followed by a pointer to a root domain name...
ROS-2-2202
2.2202 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...
ROS-2-2151
2.2151 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote code execution in...
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote code execution in...
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote code execution in...
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote code execution in...
The vulnerability of the ngx_resolver_copy() function in the nginx server allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the ngxresolvercopy function in the nginx server is related to a single-byte offset error during the writing of the point symbol '.', 0x2E beyond the buffer limit. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure by sending...