4.3
CVE-2005-3183
- EPSS 2.1%
- Veröffentlicht 12.10.2005 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:25
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginThe HTBoundary_put_block function in HTBound.c for W3C libwww (w3c-libwww) allows remote servers to cause a denial of service (segmentation fault) via a crafted multipart/byteranges MIME message that triggers an out-of-bounds read.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.1% | 0.793 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://secunia.com/advisories/25098
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt
http://secunia.com/advisories/19193
http://secunia.com/advisories/17119
http://secunia.com/advisories/17122
http://secunia.com/advisories/17489
http://secunia.com/advisories/17814
http://www.mandriva.com/security/advisories?name=MDKSA-2005:210
http://www.redhat.com/support/errata/RHSA-2007-0208.html
http://www.securityfocus.com/advisories/9444
http://www.securityfocus.com/advisories/9445
http://www.securityfocus.com/bid/15035
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=159597
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9653
https://usn.ubuntu.com/220-1/