Summary
CoreHTTP is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data.
Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial of service.
This issue affects CoreHTTP 0.5.3.1.
other versions may also
be affected.
References
Severity
Classification
-
CVE CVE-2009-3586 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability
- ModSecurity Multiple Remote Denial of Service Vulnerabilities
- Microsoft IIS WebDAV Remote Authentication Bypass Vulnerability
- Apache Traffic Server Synthetic Health Checks Remote DoS Vulnerability
- IBM WebSphere Application Server (WAS) Multiple Vulnerabilities - (Jan2012)