Test Kennung:	1.3.6.1.4.1.25623.1.0.801636
Kategorie:	Buffer overflow
Titel:	nginx HTTP Request Remote Buffer Overflow Vulnerability
Zusammenfassung:	nginx is prone to a buffer-overflow vulnerability.
Beschreibung:	Summary: nginx is prone to a buffer-overflow vulnerability. Vulnerability Insight: The flaw is due to an error in 'src/http/ngx_http_parse.c' which allows remote attackers to execute arbitrary code via crafted HTTP requests. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Affected Software/OS: nginx versions 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.7.x before 0.7.62 and 0.8.x before 0.8.15. Solution: Update to nginx versions 0.5.38, 0.6.39, 0.7.62 or 0.8.15. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2629 CERT/CC vulnerability note: VU#180065 http://www.kb.cert.org/vuls/id/180065 Debian Security Information: DSA-1884 (Google Search) http://www.debian.org/security/2009/dsa-1884 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html
Copyright	Copyright (C) 2010 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.