VYPR
Unrated severityNVD Advisory· Published Nov 24, 2009· Updated Jun 16, 2026

CVE-2009-3896

CVE-2009-3896

Description

src/http/ngx_http_parse.c in nginx (aka Engine X) 0.1.0 through 0.4.14, 0.5.x before 0.5.38, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.14 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a long URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nginx/Nginx2 versions
    cpe:2.3:a:nginx:nginx:0.6.1516:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:nginx:nginx:0.6.1516:*:*:*:*:*:*:*
    • (no CPE)range: >=0.1.0 <0.8.14

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.