Vulnerability Details CVE-2009-3711
Stack-based buffer overflow in the h_handlepeer function in http.cpp in httpdx 1.4, and possibly 1.4.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.789
EPSS Ranking 99.0%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=125544914512291&w=2
- http://osvdb.org/58714
- http://secunia.com/advisories/36991
- http://www.pank4j.com/exploits/httpdxb0f.php
- http://www.securityfocus.com/archive/1/507042/100/0/threaded
- http://www.securityfocus.com/archive/1/507073/100/0/threaded
- http://www.vupen.com/english/advisories/2009/2874
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53700
- http://marc.info/?l=bugtraq&m=125544914512291&w=2
- http://osvdb.org/58714
- http://secunia.com/advisories/36991
- http://www.pank4j.com/exploits/httpdxb0f.php
- http://www.securityfocus.com/archive/1/507042/100/0/threaded
- http://www.securityfocus.com/archive/1/507073/100/0/threaded
- http://www.vupen.com/english/advisories/2009/2874
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53700