Nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

The 'nginx' program is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Solution

Updates are available. Please see the references for more information.

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552035
http://nginx.net/
http://www.securityfocus.com/bid/36839

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3896

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Authentication bypassing in Lotus Domino
Apache Directory Listing
Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
Aspen Sever Directory Traversal Vulnerability
Acritum Femitter Server URI Directory Traversal Vulnerability

nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability

Take action and discover your vulnerabilities