CVE-2005-1391
pound - remote
EPSS 7.8%
Description
Buffer overflow in the add_port function in APSIS Pound 1.8.2 and earlier allows remote attackers to execute arbitrary code via a long Host HTTP header.
How to fix CVE-2005-1391
To remediate CVE-2005-1391, upgrade the affected package to a fixed version below.
- Debian/pound—upgrade to 1.8.2-1.1 or later
- Debian/pound—upgrade to 1.8.2-1sarge1 or later
Is CVE-2005-1391 being exploited?
Moderate — EPSS is 7.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1.8.2-1.1
- from 0, < 1.8.2-1sarge1