Description

Buffer overflow in ngx_http_mp4_module.c in the ngx_http_mp4_module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted MP4 file.

Remediation

References

CVE-2012-2089

Related Vulnerabilities

WordPress Plugin Staff Directory:Company Directory Cross-Site Request Forgery (3.6)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.7)

WordPress Plugin CMS Commander Client PHP Object Injection (2.21)

SharePoint CVE-2023-28288 Vulnerability (CVE-2023-28288)

TYPO3 Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-26229)

Severity

Medium

Classification

CVE-2012-2089 CWE-120

Tags

Missing Update Known Vulnerabilities