Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1353

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2009-1353
Last Modified 29 Apr 2009 01:29:38
Published 21 Apr 2009 12:24:52
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1353

Summary

Buffer overflow in the http_parse_hex function in libz/misc.c in Zervit Webserver 0.02 allows remote attackers to cause a denial of service (daemon crash) via a long URI, related to http.c.

Vulnerable Systems

Application

  • Sebastian Fernandez Zervit 0.02


References

CONFIRM - http://zervit.svn.sourceforge.net/viewvc/zervit/trunk/src/libz/misc.c?view=log

CONFIRM - http://zervit.svn.sourceforge.net/viewvc/zervit/trunk/src/libz/misc.c?r1=17&r2=19

BID - 34530

BUGTRAQ - 20090414 Zervit Webserver Buffer Overflow

MILW0RM - 8447

SECUNIA - 34735

OSVDB - 53768


Last Updated: 27 May 2016 10:50:32