Lucene search

K

Ubuntu.comUB:CVE-2013-3843

HistoryJun 13, 2014 - 12:00 a.m.

CVE-2013-3843

2014-06-1300:00:00

ubuntu.com

ubuntu.com

9

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.345

Percentile

97.2%

Stack-based buffer overflow in the mk_request_header_process function in
mk_request.c in Monkey HTTP Daemon (monkeyd) before 1.2.1 allows remote
attackers to cause a denial of service (crash) and possibly execute
arbitrary code via a crafted HTTP header.

References

archives.neohapsis.com/archives/bugtraq/2013-06/0015.html

bugs.monkey-project.com/ticket/182

monkey-project.com/Announcements/v1.2.1

secunia.com/advisories/53697

xforce.iss.net/xforce/xfdb/84755

github.com/monkey/monkey/issues/88

launchpad.net/bugs/cve/CVE-2013-3843

nvd.nist.gov/vuln/detail/CVE-2013-3843

security-tracker.debian.org/tracker/CVE-2013-3843

www.cve.org/CVERecord?id=CVE-2013-3843

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS

0.345

Percentile

97.2%

Related for UB:CVE-2013-3843

packetstorm2 cvelist1 checkpoint_advisories1 prion1 metasploit1 securityvulns2 nvd1 openvas3 cve1 gentoo1 nessus1