CVE-2013-4484

Published: Nov 1, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Varnish before 3.0.5 allows remote attackers to cause a denial of service (child-process crash and temporary caching outage) via a GET request with trailing whitespace characters and no URI.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2013:1679

vendor-advisory

x_refsource_SUSE

DSA-2814

vendor-advisory

x_refsource_DEBIAN

[oss-security] 20131030 Re: CVE number needed for Varnish DoS, also heads-up

mailing-list

x_refsource_MLIST

20131030 [CVE-2013-4484] DoS vulnerability in Varnish HTTP cache

mailing-list

x_refsource_BUGTRAQ

openSUSE-SU-2013:1683

vendor-advisory

x_refsource_SUSE

https://www.varnish-cache.org/trac/ticket/1367

x_refsource_CONFIRM

55746

third-party-advisory

x_refsource_SECUNIA

55452

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-4484

Description

Affected Products

References