CoreHTTP 'src/http.c ' Buffer Overflow Vulnerability Network Vulnerability

Summary

CoreHTTP is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial of service. This issue affects CoreHTTP 0.5.3.1. other versions may also be affected.

References

http://corehttp.sourceforge.net/
http://www.securityfocus.com/archive/1/508272
http://www.securityfocus.com/bid/37237

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3586
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ModSecurity Multiple Remote Denial of Service Vulnerabilities
IIS Remote Command Execution
Serva32 Directory Traversal and Denial of Service Vulnerabilities
JBoss Enterprise Application Platform Multiple Remote Vulnerabilities
Xerver HTTP Server Web Administration Denial of Service Vulnerability

Take action and discover your vulnerabilities