5

CVE-2011-1027

Exploit

Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attackers to cause a denial of service (infinite loop) via a string composed of a % (percent) character followed by invalid hex characters, as demonstrated by a %gg sequence.

Data is provided by the National Vulnerability Database (NVD)
Lars HjemliCgit Version <= 0.8.3.4
Lars HjemliCgit Version0.1
Lars HjemliCgit Version0.2
Lars HjemliCgit Version0.3
Lars HjemliCgit Version0.4
Lars HjemliCgit Version0.5
Lars HjemliCgit Version0.6
Lars HjemliCgit Version0.6.1
Lars HjemliCgit Version0.6.2
Lars HjemliCgit Version0.6.3
Lars HjemliCgit Version0.7
Lars HjemliCgit Version0.7.1
Lars HjemliCgit Version0.7.2
Lars HjemliCgit Version0.8
Lars HjemliCgit Version0.8.1
Lars HjemliCgit Version0.8.1.1
Lars HjemliCgit Version0.8.2
Lars HjemliCgit Version0.8.2.1
Lars HjemliCgit Version0.8.2.2
Lars HjemliCgit Version0.8.3
Lars HjemliCgit Version0.8.3.1
Lars HjemliCgit Version0.8.3.2
Lars HjemliCgit Version0.8.3.3
FedoraprojectFedora Version13
FedoraprojectFedora Version14
FedoraprojectFedora Version15
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 5.19% 0.889
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-193 Off-by-one Error

A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

http://openwall.com/lists/oss-security/2011/03/07/3
Patch
Third Party Advisory
Mailing List
http://secunia.com/advisories/43633
Vendor Advisory
Broken Link
http://secunia.com/advisories/43788
Vendor Advisory
Broken Link
http://www.securityfocus.com/bid/46756
Third Party Advisory
Exploit
Broken Link
VDB Entry