Detections
Analytics

FreeBSD : nginx -- SPDY memory corruption (89db3b31-a4c3-11e3-978f-f0def16c5c1b)

high Nessus Plugin ID 72849

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The nginx project reports :

A bug in the experimental SPDY implementation in nginx 1.5.10 was found, which might allow an attacker to corrupt worker process memory by using a specially crafted request, potentially resulting in arbitrary code execution (CVE-2014-0088).

The problem only affects nginx 1.5.10 on 32-bit platforms, compiled with the ngx_http_spdy_module module (which is not compiled by default), if the 'spdy' option of the 'listen' directive is used in a configuration file.

Solution

Update the affected package.

See Also

http://mailman.nginx.org/pipermail/nginx-announce/2014/000132.html

http://www.nessus.org/u?36a9b1d1

Plugin Details

Severity: High

ID: 72849

File Name: freebsd_pkg_89db3b31a4c311e3978ff0def16c5c1b.nasl

Version: 1.6

Type: local

Published: 3/6/2014

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:nginx-devel, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/6/2014

Vulnerability Publication Date: 3/4/2014

Reference Information

CVE: CVE-2014-0088