NVD

Id
42028  
Name
CVE-2013-7299  
Description
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in instead of , which prevents a null terminator from being added and causes Tntnet to include headers from other requests.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-18  
Published
2014-01-26  
Modified Date
2014-02-21  
Seq
2013-7299  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
212184 42028 CVE-2013-7299 FEDORA-2014-1619  View
212185 42028 CVE-2013-7299 [oss-security] 20140118 CVE requests / advisory: cxxtools <= 2.2, Tntnet <= 2.2  View
212186 42028 CVE-2013-7299 [oss-security] 20140118 Re: CVE requests / advisory: cxxtools <= 2.2, Tntnet <= 2.2  View
212187 42028 CVE-2013-7299 65025  View
212188 42028 CVE-2013-7299 http://www.tntnet.org/download/tntnet-2.2.1/Releasenotes-2.2.1.markdown  View
212189 42028 CVE-2013-7299 cxxtools-cve20137299-session-hijacking(90565)  View
212190 42028 CVE-2013-7299 https://github.com/maekitalo/tntnet/commit/9bd3b14042e12d84f39ea9f55731705ba516f525  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
24364 JVNDB-2013-005939 tntnet の framework/common/messageheaderparser.cpp における重要な情報を取得される脆弱性 tntnet の framework/common/messageheaderparser.cpp には、重要な情報を取得される脆弱性が存在します。 CVE-2013-7299 67241 CVE-2013-7299 42028 5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005939.html 2013-12-11 2014-01-29 View