CVE-2009-3305

Polipo 1.0.4 - Denial of Service via Cache-Control Header Parsing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3305.

AI-analyzed exploit summary This Perl script exploits a memory corruption vulnerability in Polipo 1.0.4 by sending a crafted HTTP request with an invalid Content-Length header, triggering a segmentation fault in the memmove function. The PoC demonstrates the vulnerability but does not achieve remote code execution.

Description

Polipo 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a Cache-Control header that lacks a value for the max-age field, which triggers a segmentation fault in the httpParseHeaders function in http_parse.c, and possibly other unspecified vectors.

Exploits (1)

exploitdb WORKING POC

perldoslinux

https://www.exploit-db.com/exploits/10338

View Code ZIP pw:eip

This Perl script exploits a memory corruption vulnerability in Polipo 1.0.4 by sending a crafted HTTP request with an invalid Content-Length header, triggering a segmentation fault in the memmove function. The PoC demonstrates the vulnerability but does not achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Polipo 1.0.4

No auth needed

Prerequisites: Network access to the target Polipo server

MITRE ATT&CK