Nginx HTTP Request Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

The 'nginx' program is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Solution

Updates are available. Please see the references for more information.

References

http://nginx.net/
http://nginx.net/CHANGES
http://nginx.net/CHANGES-0.5
http://nginx.net/CHANGES-0.6
http://nginx.net/CHANGES-0.7
http://www.kb.cert.org/vuls/id/180065
http://www.securityfocus.com/bid/36384

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-2629

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Kolibri Remote Buffer Overflow Vulnerability
Apache 2.0.39 Win32 directory traversal
RDS / MDAC Vulnerability (msadcs.dll) located
Weborf 'get_param_value()' Function HTTP Header Handling Denial Of Service Vulnerability
Microsoft Windows Media Services ISAPI Extension Code Execution Vulnerabilities

nginx HTTP Request Remote Buffer Overflow Vulnerability

Take action and discover your vulnerabilities