Buffer Overflow in HAProxy Header Capture Functionality

Buffer Overflow in HAProxy Header Capture Functionality

CVE-2012-2942 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Buffer overflow in the trash buffer in the header capture functionality in HAProxy before 1.4.21, when global.tune.bufsize is set to a value greater than the default and header rewriting is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.