[NGINX:CVE-2014-0133] SPDY heap buffer overflow
Severity
Major
Affected Packages
1
Unaffected Packages
2
CVEs
1
Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request.
| Package | Affected Version |
|---|---|
 pkg:nginx/nginx
|
>= 1.3.15, <= 1.5.11 |
| Package | Unaffected Version |
|---|---|
|
pkg:nginx/nginx
|
>= 1.5.12 |
|
pkg:nginx/nginx
|
>= 1.4.7 |
- ID
- NGINX:CVE-2014-0133
- Severity
- major
- Published
-
2014-03-28T15:55:08
(10 years ago) - Modified
-
2014-03-28T15:55:08
(10 years ago) - Rights
- NGINX Security Team
- Other Advisories
ALAS-2014-308
FREEBSD:DA4B89AD-B28F-11E3-99CA-F0DEF16C5C1B
GLSA-201406-20| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |