Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1027

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-1027
Last Modified 06 Sep 2011 11:15:16
Published 19 Mar 2011 10:00:04
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1027

Summary

Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attackers to cause a denial of service (infinite loop) via a string composed of a % (percent) character followed by invalid hex characters, as demonstrated by a %gg sequence.

Vulnerable Systems

Application

  • Lars Hjemli Cgit 0.1

  • Lars Hjemli Cgit 0.2

  • Lars Hjemli Cgit 0.3

  • Lars Hjemli Cgit 0.4

  • Lars Hjemli Cgit 0.5

  • Lars Hjemli Cgit 0.6

  • Lars Hjemli Cgit 0.6.1

  • Lars Hjemli Cgit 0.6.2

  • Lars Hjemli Cgit 0.6.3

  • Lars Hjemli Cgit 0.7

  • Lars Hjemli Cgit 0.7.1

  • Lars Hjemli Cgit 0.7.2

  • Lars Hjemli Cgit 0.8

  • Lars Hjemli Cgit 0.8.1

  • Lars Hjemli Cgit 0.8.1.1

  • Lars Hjemli Cgit 0.8.2

  • Lars Hjemli Cgit 0.8.2.1

  • Lars Hjemli Cgit 0.8.2.2

  • Lars Hjemli Cgit 0.8.3

  • Lars Hjemli Cgit 0.8.3.1

  • Lars Hjemli Cgit 0.8.3.2

  • Lars Hjemli Cgit 0.8.3.3

  • Lars Hjemli Cgit 0.8.3.4


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=680905

MLIST - [oss-security] 20110307 cgit convert_query_hexchar infinite loop (CVE-2011-1027)

FEDORA - FEDORA-2011-2815

FEDORA - FEDORA-2011-2803

CONFIRM - http://hjemli.net/git/cgit/commit/?h=stable&id=fc384b16fb9787380746000d3cea2d53fccc548e

XF - cgit-convertqueryhexchar-dos(65919)

VUPEN - ADV-2011-0667

BID - 46756

OSVDB - 71005

SECUNIA - 43788

SECUNIA - 43633

FEDORA - FEDORA-2011-2790

MLIST - [git] 20110305 [ANNOUNCE] CGIT 0.8.3.5


Last Updated: 27 May 2016 10:56:08