Lucene search
Ubuntu.comUB:CVE-2014-0088HistoryApr 29, 2014 - 12:00 a.m.
CVE-2014-0088
2014-04-2900:00:00
ubuntu.com
ubuntu.com
13
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.015
Percentile
86.9%
The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10
before 1.5.11, when running on a 32-bit platform, allows remote attackers
to execute arbitrary code via a crafted request.
Notes
| Author | Note |
|---|---|
| mdeslaur | only affects 1.5.x |
Related
prion
prion
Cross site request forgery (csrf)
2014-04-29 14:38:00
nvd
nvd
CVE-2014-0088
2014-04-29 14:38:49
freebsd
freebsd
nginx -- SPDY memory corruption
2014-03-04 00:00:00
hackerone
hackerone
Internet Bug Bounty: SPDY memory corruption
2014-03-24 21:54:07
nessus
nessus
nginx 1.5.10 SPDY Memory Corruption
2014-05-06 00:00:00
debiancve
debiancve
CVE-2014-0088
2014-04-29 14:38:49
cvelist
cvelist
CVE-2014-0088
2014-04-29 14:00:00
nginx
nginx
SPDY memory corruption
2014-04-29 14:38:49
openvas
openvas
nginx 1.5.10 'ngx_http_spdy_module' RCE Vulnerability
2020-11-05 00:00:00
cve
cve
CVE-2014-0088
2014-04-29 14:38:49
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.015
Percentile
86.9%
Related for UB:CVE-2014-0088