CVE-2009-3305

Metadata

CVE-2009-3305
5.0
bugs.debian.org, groups.google.com, debian.org, securityfocus.com
2009-12-24
2017-06-06 20:21

Description

Polipo 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a Cache-Control header that lacks a value for the max-age field, which triggers a segmentation fault in the httpParseHeaders function in http_parse.c, and possibly other unspecified vectors.

Related Vulnerabilities

platform vulnerability
CVE-2009-3305 polipo
CVE-2009-3305