Description

The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.

Remediation

References

CVE-2013-2028

Related Vulnerabilities

WordPress 4.4.x Same Origin Method Execution (SOME) Vulnerability (4.4 - 4.4.2)

WordPress Plugin Advanced WP Columns Cross-Site Scripting (2.0.6)

WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner 'config' Parameter Local File Inclusion (3.0.3)

Trac Incorrect Default Permissions Vulnerability (CVE-2010-5108)

WordPress Plugin Auto Prune Posts Cross-Site Request Forgery (1.8.0)

Severity

High

Classification

CVE-2013-2028 CWE-787

Tags

Missing Update Known Vulnerabilities