CVE-2012-0256
published 2012-03-26CVE-2012-0256: Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a…
medium5CVSS 3.1
AVNACLAuNCNINAP
Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a denial of service (daemon crash) via a long HTTP Host header.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| apache | traffic_server | — | — |
| debian | trafficserver | < trafficserver 3.0.4-1 (bookworm) | trafficserver 3.0.4-1 (bookworm) |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM