CVE-2011-4362
published 2011-12-24CVE-2011-4362: Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN…
PriorityP434medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
16.25%
96.5th percentile
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | lighttpd | < lighttpd 1.4.30-1 (bookworm) | lighttpd 1.4.30-1 (bookworm) |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | >= 0 < 1.4.30-1 | 1.4.30-1 |
| lighttpd | lighttpd | >= 0 < 1.4.30-1 | 1.4.30-1 |
| lighttpd | lighttpd | >= 0 < 1.4.30-1 | 1.4.30-1 |
| lighttpd | lighttpd | >= 0 < 1.4.30-1 | 1.4.30-1 |
| lighttpd | lighttpd | >= 1.4.1 < 1.4.30 | 1.4.30 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2011-4362: lighttpd - Integer signedness error in the base64_decode function in the HTTP authenticatio...
vendor_debian·2011·CVSS 5.0
CVE-2011-4362 [MEDIUM] CVE-2011-4362: lighttpd - Integer signedness error in the base64_decode function in the HTTP authenticatio...
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index.
Scope: local
bookworm: resolved (fixed in 1.4.30-1)
bullseye: resolved (fixed in 1.4.30-1)
forky: resolved (fixed in 1.4.30-1)
sid: resolved (fixed in 1.4.30-1)
trixie: resolved (fixed in 1.4.30-1)
GHSA
GHSA-wx9r-x448-8rcp: Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth
ghsa_unreviewed·2022-05-13
CVE-2011-4362 [MEDIUM] GHSA-wx9r-x448-8rcp: Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index.
OSV
CVE-2011-4362: Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth
osv·2011-12-24·CVSS 5.0
CVE-2011-4362 [MEDIUM] CVE-2011-4362: Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index.
No detection rules found.
Bugzilla
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [epel-all]
bugzilla·2011-11-30·CVSS 5.0
CVE-2011-4362 [MEDIUM] CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [epel-all]
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/ne
Bugzilla
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash)
bugzilla·2011-11-30·CVSS 5.0
CVE-2011-4362 [MEDIUM] CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash)
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash)
An signedness error, leading to out of stack-based buffer read flaw was found in the way lighttpd, a lightning fast webserver with light system requirements, processed certain invalid base64 HTTP authentication tokens. A remote attacker could provide a specially crafted HTTP authentication request, leading to denial of service (lighttpd daemon crash due to an signedness error while processing the token).
Upstream bug report:
[1] http://redmine.lighttpd.net/issues/2370
Upstream patch (with testcase and NEWS update):
[2] http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2806/diff
References:
[3] http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2011_01.txt
(upstream advisory)
[4] h
Bugzilla
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [fedora-all]
bugzilla·2011-11-30·CVSS 5.0
CVE-2011-4362 [MEDIUM] CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [fedora-all]
CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/
arXiv
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
arxiv_fulltext·2022-12-29
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
## Abstract
Currently, the development of IoT firmware heavily depends on third-party components (TPCs) to improve development efficiency. Nevertheless, TPCs are not secure, and the vulnerabilities in TPCs will influence the security of IoT firmware. Existing works pay less attention to the vulnerabilities caused by TPCs, and we still lack a comprehensive understanding of the security impact of TPC vulnerability against firmware. To fill in the knowledge gap, we design and implement , which leverages syntactical features and control-flow graph features to detect the TPCs in firmware, and then recognizes the corresponding vulnerabilities. Based on , we present the first l
arXiv
Talos: Neutralizing Vulnerabilities with Security Workarounds for Rapid Response
arxiv_fulltext·2017-11-02
Talos: Neutralizing Vulnerabilities with Security Workarounds for Rapid Response
Talos: Neutralizing Vulnerabilities with Security Workarounds for Rapid Response
Zhen Huang0.25in
Mariana D'Angelo0.25in
Dhaval Miyani0.25in
David Lie
University of Toronto
\z.huang,mariana.dangelo,dhaval.miyani\@mail.utoronto.ca,[email protected]
## Abstract
There is often a considerable delay between the discovery of a vulnerability and the issue of a patch. One way to mitigate this window of vulnerability is to use a configuration workaround, which prevents the vulnerable code from being executed at the cost of some lost functionality -- but only if one is available. Since application configurations are not specifically designed to mitigate software vulnerabilities, we find that they only cover 25.2% of vulnerabilities.
To minimize patch delay vulnerabilities and address the lim
http://archives.neohapsis.com/archives/bugtraq/2011-12/0167.htmlhttp://blog.pi3.com.pl/?p=277http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2011_01.txthttp://jvn.jp/en/jp/JVN37417423/index.htmlhttp://redmine.lighttpd.net/issues/2370http://secunia.com/advisories/47260http://www.debian.org/security/2011/dsa-2368http://www.exploit-db.com/exploits/18295http://www.openwall.com/lists/oss-security/2011/11/29/13http://www.openwall.com/lists/oss-security/2011/11/29/8http://www.securitytracker.com/id?1026359https://bugzilla.redhat.com/show_bug.cgi?id=758624https://exchange.xforce.ibmcloud.com/vulnerabilities/71536http://archives.neohapsis.com/archives/bugtraq/2011-12/0167.htmlhttp://blog.pi3.com.pl/?p=277http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2011_01.txthttp://jvn.jp/en/jp/JVN37417423/index.htmlhttp://redmine.lighttpd.net/issues/2370http://secunia.com/advisories/47260http://www.debian.org/security/2011/dsa-2368http://www.exploit-db.com/exploits/18295http://www.openwall.com/lists/oss-security/2011/11/29/13http://www.openwall.com/lists/oss-security/2011/11/29/8http://www.securitytracker.com/id?1026359https://bugzilla.redhat.com/show_bug.cgi?id=758624https://exchange.xforce.ibmcloud.com/vulnerabilities/71536
2011-12-24
Published