CVE-2014-6273
published 2014-09-30CVE-2014-6273: Buffer overflow in the HTTP transport code in apt-get in APT 1.0.1 and earlier allows man-in-the-middle attackers to cause a denial of service (crash) or…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Buffer overflow in the HTTP transport code in apt-get in APT 1.0.1 and earlier allows man-in-the-middle attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted URL.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | advanced_package_tool | <= 1.0.1 | — |
| debian | apt | < apt 1.0.3 (bookworm) | apt 1.0.3 (bookworm) |
| debian | apt | >= 0 < 1.0.3 | 1.0.3 |
| debian | apt | >= 0 < 1.0.3 | 1.0.3 |
| debian | apt | >= 0 < 1.0.3 | 1.0.3 |
| debian | apt | >= 0 < 1.0.3 | 1.0.3 |
| debian | apt | >= 0 < 1.0.1ubuntu2.4.1 | 1.0.1ubuntu2.4.1 |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM