cpe:/a:lighttpd:lighttpd:1.0.2 cpe:/a:lighttpd:lighttpd:1.0.3 cpe:/a:lighttpd:lighttpd:1.1.0 cpe:/a:lighttpd:lighttpd:1.1.1 cpe:/a:lighttpd:lighttpd:1.1.2 cpe:/a:lighttpd:lighttpd:1.1.3 cpe:/a:lighttpd:lighttpd:1.1.4 cpe:/a:lighttpd:lighttpd:1.1.5 cpe:/a:lighttpd:lighttpd:1.1.6 cpe:/a:lighttpd:lighttpd:1.1.7 cpe:/a:lighttpd:lighttpd:1.1.8 cpe:/a:lighttpd:lighttpd:1.1.9 cpe:/a:lighttpd:lighttpd:1.2.0 cpe:/a:lighttpd:lighttpd:1.2.1 cpe:/a:lighttpd:lighttpd:1.2.2 cpe:/a:lighttpd:lighttpd:1.2.3 cpe:/a:lighttpd:lighttpd:1.2.5 cpe:/a:lighttpd:lighttpd:1.2.6 cpe:/a:lighttpd:lighttpd:1.2.7 cpe:/a:lighttpd:lighttpd:1.2.8 cpe:/a:lighttpd:lighttpd:1.3.0 cpe:/a:lighttpd:lighttpd:1.3.1 cpe:/a:lighttpd:lighttpd:1.3.2 cpe:/a:lighttpd:lighttpd:1.3.3 cpe:/a:lighttpd:lighttpd:1.3.4 cpe:/a:lighttpd:lighttpd:1.3.5 cpe:/a:lighttpd:lighttpd:1.3.6 cpe:/a:lighttpd:lighttpd:1.3.8 cpe:/a:lighttpd:lighttpd:1.3.9 cpe:/a:lighttpd:lighttpd:1.3.10 cpe:/a:lighttpd:lighttpd:1.3.11 cpe:/a:lighttpd:lighttpd:1.3.12 cpe:/a:lighttpd:lighttpd:1.3.13 cpe:/a:lighttpd:lighttpd:1.3.14 cpe:/a:lighttpd:lighttpd:1.3.15 cpe:/a:lighttpd:lighttpd:1.3.16 cpe:/a:lighttpd:lighttpd:1.4.0 cpe:/a:lighttpd:lighttpd:1.4.2 cpe:/a:lighttpd:lighttpd:1.4.3 cpe:/a:lighttpd:lighttpd:1.4.4 cpe:/a:lighttpd:lighttpd:1.4.5 cpe:/a:lighttpd:lighttpd:1.4.6 cpe:/a:lighttpd:lighttpd:1.4.7 cpe:/a:lighttpd:lighttpd:1.4.8 cpe:/a:lighttpd:lighttpd:1.4.9 cpe:/a:lighttpd:lighttpd:1.4.10 cpe:/a:lighttpd:lighttpd:1.4.11 cpe:/a:lighttpd:lighttpd:1.4.12 cpe:/a:lighttpd:lighttpd:1.4.13 cpe:/a:lighttpd:lighttpd:1.4.14 cpe:/a:lighttpd:lighttpd:1.4.15 cpe:/a:lighttpd:lighttpd:1.4.16 cpe:/a:lighttpd:lighttpd:1.4.17 cpe:/a:lighttpd:lighttpd:1.4.18 cpe:/a:lighttpd:lighttpd:1.4.19 cpe:/a:lighttpd:lighttpd:1.4.20 cpe:/a:lighttpd:lighttpd:1.4.21 cpe:/a:lighttpd:lighttpd:1.4.22 cpe:/a:lighttpd:lighttpd:1.4.23 cpe:/a:lighttpd:lighttpd:1.4.24 cpe:/a:lighttpd:lighttpd:1.4.25 cpe:/a:lighttpd:lighttpd:1.5.0 CVE-2011-4362 2011-12-24T14:55:05.240-05:00 2017-08-28T21:30:29.553-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2011-12-26T15:45:00.000-05:00 SECTRACK 1026359 EXPLOIT-DB 18295 BUGTRAQ 20111224 Lighttpd Proof of Concept code for CVE-2011-4362 SECUNIA 47260 DEBIAN DSA-2368 MLIST [oss-security] 20111129 CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error MLIST [oss-security] 20111129 Re: CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error MISC http://blog.pi3.com.pl/?p=277 CONFIRM http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2011_01.txt CONFIRM http://redmine.lighttpd.net/issues/2370 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=758624 XF lighttpd-base64-dos(71536) Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index.