NVD

Id
31758  
Name
CVE-2014-3583  
Description
The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon crash) via long response headers.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2014-12-15  
Modified Date
2016-12-07  
Seq
2014-3583  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
167300 31758 CVE-2014-3583 http://httpd.apache.org/security/vulnerabilities_24.html  View
167301 31758 CVE-2014-3583 APPLE-SA-2015-08-13-2  View
167302 31758 CVE-2014-3583 APPLE-SA-2015-09-16-4  View
167303 31758 CVE-2014-3583 RHSA-2015:1855  View
167304 31758 CVE-2014-3583 http://svn.apache.org/viewvc?view=revision&revision=1638818  View
167305 31758 CVE-2014-3583 http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html  View
167306 31758 CVE-2014-3583 71657  View
167307 31758 CVE-2014-3583 USN-2523-1  View
167308 31758 CVE-2014-3583 https://bugzilla.redhat.com/show_bug.cgi?id=1163555  View
167309 31758 CVE-2014-3583 https://support.apple.com/HT205219  View
167310 31758 CVE-2014-3583 https://support.apple.com/kb/HT205031  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
18345 JVNDB-2014-007220 Apache HTTP Server の mod_proxy_fcgi モジュールの mod_proxy_fcgi.c におけるサービス運用妨害 (DoS) の脆弱性 Apache HTTP Server の mod_proxy_fcgi モジュールの mod_proxy_fcgi.c の handle_headers 関数には、サービス運用妨害 (バッファオーバーリードおよびデーモンクラッシュ) 状態にされる脆弱性が存在します。 CVE-2014-3583 70871 CVE-2014-3583 31758 5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-007220.html 2014-11-12 2016-01-28 View