Node.js 0.12.x before 0.12.9, 4.x before 4.2.3, and 5.x before 5.1.1 does not ensure the availability of a parser for each HTTP socket, which allows remote attackers to cause a denial of service (uncaughtException and service outage) via a pipelined HTTP request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-01-02T21:00:00

Updated: 2024-08-06T08:06:31.544Z

Reserved: 2015-10-29T00:00:00

Link: CVE-2015-8027

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-01-02T21:59:17.830

Modified: 2024-11-21T02:37:52.380

Link: CVE-2015-8027

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-11-25T00:00:00Z

Links: CVE-2015-8027 - Bugzilla