CVE-2016-6909 in FortiOSinfo

Summary

Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code via a crafted HTTP request, aka EGREGIOUSBLUNDER.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Reservation

08/22/2016

Disclosure

08/24/2016

Moderation

VulDB entry created

Entries

VDB-90929

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

9.8

EPSS

0.63409

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6909
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6909
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6909/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!