CVE-2011-4315

medium F5
CVSS v3 Base Score
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS Score
2.8%
Exploitation probability in 30 days
Top 14% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
P
Integrity
P
Availability
P
Published: December 8, 2011 (5270 days ago)
Last Modified: April 29, 2026
Vendor: F5
Source: NVD

Description

Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.

CWE

CWE-787

Affected Products

f5 nginxfedoraproject fedorasuse studiosuse studio onsitesuse webyast

References

🔗 lists.fedoraproject.org 🔗 lists.opensuse.org 🔗 openwall.com 🔗 openwall.com 🔗 secunia.com