CVE-2009-1476
Darren Reed IPFilter 4.1.31 - Local Privilege Escalation via Long Hostname Buffer Overflow
Title source: llmDescription
Buffer overflow in lib/load_http.c in ippool in Darren Reed IPFilter (aka IP Filter) 4.1.31 allows local users to gain privileges via vectors involving a long hostname in a URL.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35076
Various Sources x_refsource_confirm
http://cvsweb.netbsd.org/bsdweb.cgi/src/dist/ipf/lib/load_http.c
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1022272
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/50716
Various Sources x_refsource_confirm
http://cvsweb.netbsd.org/bsdweb.cgi/src/dist/ipf/lib/load_http.c.diff?r1=1.1&r2=1.2&f=h
Exploit third-party-advisory
x_refsource_sreasonres
http://securityreason.com/achievement_securityalert/62
Scores
EPSS
0.0047
EPSS Percentile
37.9%
Details
CWE
CWE-119
Status
published
Products (1)
darren_reed/ipfilter
4.1.31
Published
May 26, 2009
Tracked Since
Feb 18, 2026