EIP-2026-102703
PRE-CVENginx 0.7.0 < 0.7.61 / 0.6.0 < 0.6.38 / 0.5.0 < 0.5.37 / 0.4.0 < 0.4.14 - Denial of Service (PoC)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-102703. PoCs published by Zeus Penguin.
AI-analyzed exploit summary The exploit demonstrates a buffer overflow vulnerability in nginx versions 0.4.0 to 0.7.61 by sending a crafted HTTP GET request with an overly long URI, causing a segmentation fault in the worker process. The PoC includes a Perl script to trigger the crash and GDB output confirming the vulnerability.
Description
Nginx 0.7.0 < 0.7.61 / 0.6.0 < 0.6.38 / 0.5.0 < 0.5.37 / 0.4.0 < 0.4.14 - Denial of Service (PoC)
Exploits (1)
The exploit demonstrates a buffer overflow vulnerability in nginx versions 0.4.0 to 0.7.61 by sending a crafted HTTP GET request with an overly long URI, causing a segmentation fault in the worker process. The PoC includes a Perl script to trigger the crash and GDB output confirming the vulnerability.