nginx HTTP Request Multiple Vulnerabilities

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.

Synopsis :

The web server on the remote host is affected by multiple

Description :

The remote web server is running nginx, a lightweight, high
performance web server / reverse proxy and email (IMAP/POP3) proxy.

According to its Server response header, the installed version of
nginx is affected by multiple vulnerabilities : - A remote buffer
overflow attack related to its parsing of complex URIs.

- A remote denial of service attack related to its parsing
of HTTP request headers.

See also :

Solution :

Upgrade to version 0.8.15, 0.7.62, 0.6.39, 0.5.38, or later.

Risk factor :

High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true

Family: Web Servers

Nessus Plugin ID: 41608 ()

Bugtraq ID: 36384

CVE ID: CVE-2009-2629