PT-2004-2038 · Freebsd · Freebsd

Published

2004-11-24

Updated

2017-07-11

CVE-2004-1053

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 4.1 through 5.3

Description: The issue is related to an integer overflow in the fetch function, which can be exploited by remote malicious servers. This exploitation can occur via certain HTTP headers in an HTTP response, leading to a buffer overflow and potentially allowing the execution of arbitrary code.

Recommendations: For FreeBSD versions 4.1 through 5.3, update to a version that includes a fix for the integer overflow in the fetch function to prevent remote code execution.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1053

Affected Products

Freebsd

PT-2004-2038 · Freebsd · Freebsd

CVE-2004-1053

Related Identifiers

Affected Products

References · 4