Description

The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allows remote attackers to execute arbitrary code via a crafted request.

Remediation

References

CVE-2014-0088

Related Vulnerabilities

WordPress 4.4.x Possible SQL Injection Vulnerability (4.4 - 4.4.11)

WordPress 4.1.x Same Origin Method Execution (SOME) Vulnerability (4.1 - 4.1.10)

WordPress Plugin WooCommerce Cross-Site Scripting (3.5.4)

WordPress Plugin Include Me Remote Code Execution (1.2.1)

WordPress Plugin Social Login Lite For WooCommerce Security Bypass (1.6.0)

Severity

High

Classification

CVE-2014-0088 CWE-119

Tags

Missing Update Known Vulnerabilities