CVE-2014-0133

EPSS 18.6%

Published: 3/28/2014Modified: 4/28/2026

Description

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request.

Affected packages (1)

Debian/nginxfrom 0, < 1.4.7-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-0133