Summary
CoreHTTP is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data.
Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial of service.
This issue affects CoreHTTP 0.5.3.1.
other versions may also
be affected.
References
Severity
Classification
-
CVE CVE-2009-3586 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Media Player Classic (MPC) Webserver Multiple Vulnerabilities
- nginx Arbitrary Code Execution Vulnerability
- Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability
- Zeus Web Server 'SSL2_CLIENT_HELLO' Remote Buffer Overflow Vulnerability
- PHP Built-in WebServer 'Content-Length' Denial of Service Vulnerability