Lucene search
K

5 matches found

ArchLinux
ArchLinux
added 2018/02/09 12:0 a.m.27 views

[ASA-201802-5] sthttpd: arbitrary code execution

Arch Linux Security Advisory ASA-201802-5 ========================================= Severity: High Date : 2018-02-09 CVE-ID : CVE-2017-10671 Package : sthttpd Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-333 Summary ======= The package sthttpd before...

7.8CVSS3.8AI score0.01525EPSS
Exploits0References4
NVD
NVD
added 2017/06/29 8:29 a.m.20 views

CVE-2017-10671

Heap-based Buffer Overflow in the dedotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service daemon crash or possibly have unspecified other impact via a crafted filename...

7.8CVSS8AI score0.01525EPSS
Exploits0References3
OSV
OSV
added 2017/06/29 8:29 a.m.14 views

CVE-2017-10671

Heap-based Buffer Overflow in the dedotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service daemon crash or possibly have unspecified other impact via a crafted filename...

7.8CVSS7.7AI score
Exploits0References3
Cvelist
Cvelist
added 2017/06/29 8:0 a.m.27 views

CVE-2017-10671

Heap-based Buffer Overflow in the dedotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service daemon crash or possibly have unspecified other impact via a crafted filename...

8AI score0.01525EPSS
Exploits0References3
CVE
CVE
added 2017/06/29 8:0 a.m.47 views

CVE-2017-10671

CVE-2017-10671 affects sthttpd up to version 2.27.1. Heap-based Buffer Overflow occurs in the de_dotdot function in libhttpd.c, allowing remote attackers to cause a denial of service (daemon crash) and potentially other impact via a crafted filename. Upstream fixes are in 2.27.1 (as noted by Arch...

7.8CVSS7.8AI score0.01525EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder