Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-4315
HistoryDec 08, 2011 - 8:55 p.m.

CVE-2011-4315

2011-12-0820:55:01
CWE-787
[email protected]
web.nvd.nist.gov
60
cve-2011-4315
nvd
nginx
buffer overflow
denial of service
remote resolvers
security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON

Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.

Affected configurations

NVD
Node
f5nginxRange0.6.18–1.0.10
OR
f5nginxRange1.1.0–1.1.7
Node
fedoraprojectfedoraMatch16
Node
susestudioMatch1.2standard
OR
susestudio_onsiteMatch1.2
OR
susewebyastMatch1.2

Related

nessus 7
openvas 10
ubuntucve 1
seebug 1
suse 2
amazon 1
fedora 2
prion 1
nvd 1
debiancve 1
cvelist 1
nginx 1
gentoo 1
nessus
nessus
Amazon Linux AMI : nginx (ALAS-2011-30)
2013-09-04 00:00:00
openSUSE Security Update : nginx-1.0 (openSUSE-2011-48)
2014-06-13 00:00:00
openSUSE Security Update : nginx-0.8 (openSUSE-SU-2012:0237-1)
2014-06-13 00:00:00
openvas
openvas
SuSE Update for nginx openSUSE-SU-2012:0237-1 (nginx)
2012-08-02 00:00:00
openSUSE: Security Advisory for nginx (openSUSE-SU-2012:0237-1)
2012-08-02 00:00:00
Fedora Update for nginx FEDORA-2011-16075
2012-04-02 00:00:00
ubuntucve
ubuntucve
CVE-2011-4315
2011-12-08 00:00:00
seebug
seebug
nginx DNSθ§£ζžε™¨θΏœη¨‹ε †ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2011-11-18 00:00:00
suse
suse
Security update for nginx-1.0 (important)
2011-12-05 18:08:33
VUL-0: nginx: heap overflow (important)
2012-02-09 19:10:57
amazon
amazon
Medium: nginx
2011-12-13 12:50:00
fedora
fedora
[SECURITY] Fedora 16 Update: nginx-1.0.10-1.fc16
2011-12-06 00:59:40
[SECURITY] Fedora 15 Update: nginx-1.0.10-1.fc15
2011-12-06 01:03:32
prion
prion
Heap overflow
2011-12-08 20:55:00
nvd
nvd
CVE-2011-4315
2011-12-08 20:55:01
debiancve
debiancve
CVE-2011-4315
2011-12-08 20:55:01
cvelist
cvelist
CVE-2011-4315
2011-12-08 20:00:00
nginx
nginx
Buffer overflow in resolver
2011-12-08 20:55:01
gentoo
gentoo
nginx: Multiple vulnerabilities
2012-03-28 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON
Related for CVE-2011-4315
nessus7openvas10ubuntucve1seebug1suse2amazon1fedora2prion1nvd1debiancve1cvelist1nginx1gentoo1