Buffer overflow in Rack_project Rack

CVE-2013-0183

multipart/parser.rb in Rack 1.3.x before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a long string in a Multipart HTTP packet.

Vulnerability class: Buffer Overflow

EPSS: 0.038 (88.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References