cve-2013-6479-00

Summary Remote crash parsing HTTP responses
Date 2014-01-28
CVE Number CVE-2013-6479
Discovered By Jacob Appelbaum of the Tor Project
Fixed In Release 2.10.8

Description

A malicious server or man-in-the-middle could send a malformed HTTP response that could lead to a crash.

Mitigation

Validate response before using it.

Looking to reach us via XMPP? Check out the new PidginChat service!