Lucene search
Ubuntu.comUB:CVE-2009-4413HistoryDec 24, 2009 - 12:00 a.m.
CVE-2009-4413
2009-12-2400:00:00
ubuntu.com
ubuntu.com
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.3%
The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12,
1.0.4, and possibly other versions, allows remote attackers to cause a
denial of service (crash) via a request with a large Content-Length value,
which triggers an integer overflow, a signed-to-unsigned conversion error
with a negative value, and a segmentation fault.
Related
prion
prion
Integer overflow
2009-12-24 16:30:00
openvas
openvas
Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
2009-12-08 00:00:00
Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
2009-12-08 00:00:00
cve
cve
CVE-2009-4413
2009-12-24 16:30:00
debiancve
debiancve
CVE-2009-4413
2009-12-24 16:30:00
securityvulns
securityvulns
polipo proxy server DoS
2010-02-22 00:00:00
[SECURITY] [DSA-2002-1] New polipo packages fix denial of service
2010-02-22 00:00:00
nessus
nessus
Debian DSA-2002-1 : polipo - denial of service
2010-02-24 00:00:00
debian
debian
[SECURITY] [DSA-2002-1] New polipo packages fix denial of service
2010-02-19 15:36:51
[SECURITY] [DSA-2002-1] New polipo packages fix denial of service
2010-02-19 15:36:51
osv
osv
polipo - denial of service
2010-02-19 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.3%
Related for UB:CVE-2009-4413