CVE-2009-2629

HIGH Year: 2009
CVSS v2 Score
7.5
High
Weakness Type
CWE-787
View all →

Vulnerability Description

Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.15 allows remote attackers to execute arbitrary code via crafted HTTP requests.

Related Vulnerabilities

CVE-2016-9343

CRITICAL
CVSS:10.0(Critical)

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sen...

CWE-7872016

CVE-2017-2853

CRITICAL
CVSS:10.0(Critical)

An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow r...

CWE-7872017

CVE-2017-2868

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in...

CWE-7872017

CVE-2017-2869

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code...

CWE-7872017

CVE-2018-10718

CRITICAL
CVSS:10.0(Critical)

Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.

CWE-7872018

CVE-2018-17160

CRITICAL
CVSS:10.0(Critical)

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bh...

CWE-7872018