CVE-2013-1912 in HAProxyinformation

Résumé

par MITRE

Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

19/02/2013

Divulgation

10/04/2013

Modérer

accepté

Entrée

VDB-63972

CPE

prêt

EPSS

0.05464

KEV

non

Activités

très faible

Sources

Want to know what is going to be exploited?

We predict KEV entries!