Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2019-3833
Description:Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests. A remote, unauthenticated attacker can exploit this vulnerability by sending malicious HTTP request to cause denial of service to openwsman server.
Test IDs: 1.3.6.1.4.1.25623.1.1.2.2019.2179  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-3833
BugTraq ID: 107367
http://www.securityfocus.com/bid/107367
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2V5HJ355RSKMFQ7GRJAHRZNDVXASF7TA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B2HEZ7D7GF3HDF36JLGYXIK5URR66DS4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CXQP7UDPRZIZ4LM7FEJCTC2EDUYVOR2J/
SuSE Security Announcement: openSUSE-SU-2019:1111 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00006.html
SuSE Security Announcement: openSUSE-SU-2019:1217 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00065.html




© 1998-2021 E-Soft Inc. All rights reserved.