CVE-2013-1912 in HAProxyinformazioni

Riassunto

di MITRE

Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Prenotare

19/02/2013

Divulgazione

10/04/2013

Moderazione

accettato

CPE

pronto

EPSS

0.05464

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!