CVE-2013-4365
published 2013-10-17CVE-2013-4365: Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | mod_fcgid | < 2.3.9 | 2.3.9 |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | libapache2-mod-fcgid | < libapache2-mod-fcgid 1:2.3.9-1 (bookworm) | libapache2-mod-fcgid 1:2.3.9-1 (bookworm) |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| suse | cloud | — | — |
| suse | cloud | — | — |
| suse | linux_enterprise_software_development_kit | — | — |
CVSS provenance
nvd7.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH