nginx: code execution
| Package(s): | nginx | CVE #(s): | CVE-2012-2089 | ||||||||||||
| Created: | May 1, 2012 | Updated: | June 21, 2012 | ||||||||||||
| Description: | From the CVE entry:
Buffer overflow in ngx_http_mp4_module.c in the ngx_http_mp4_module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted MP4 file. | ||||||||||||||
| Alerts: |
| ||||||||||||||