HAProxy Trash Buffer Overflow Vulnerability

HAProxy is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers.

An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

HAProxy 1.4.20 is vulnerable; prior versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus