Skip to main content

Node.js V8 Stack Overflow Denial of Service Vulnerability

Last Update Date: 26 Sep 2014 Release Date: 5 Sep 2014 3764 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

A vulnerability has been identified in Node.js, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the bundled V8 library when handling certain recursive work loads, which can be exploited to cause a stack overflow and a crash.

 


Impact

  • Denial of Service

System / Technologies affected

  • Versions prior to 0.8.28, 0.10.30

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 0.8.28 or 0.10.30

 


Vulnerability Identifier


Source


Related Link