CVE-2009-3711

Name of the Vulnerable Software and Affected Versions httpdx versions 1.4 through 1.4.3

Description The issue is a stack-based buffer overflow in the h handlepeer function, located in http.cpp. This can be triggered by remote attackers sending a long HTTP GET request, potentially causing a denial of service (crash) and possibly allowing the execution of arbitrary code.

Recommendations For httpdx versions 1.4 through 1.4.3, consider restricting access to the h handlepeer function until a patch is available. As a temporary workaround, limit the length of HTTP GET requests to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.