Posts Tagged ‘nginx’

Critical vulnerabilities in routers

Vulnerability in nginx

Vulnerability allows execution of arbitrary code on the target system.

It turned out unscheduled update server nginx to version 1.4.1, which eliminated the vulnerability CVE-2013-2028, which allows the execution of arbitrary code on the target redundant system.

The vulnerability can lead to overwriting the stack areas of the workflow when processing specially designed chunked-queries. Gaps are subject to the implementation of nginx versions 1.3.9 and 1.4.0. (more…)