2 matches found
CVE-2018-12684
Out-of-bounds Read in the sendssifile function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file...
CVE-2018-12684
CivetWeb up to version 1.10 contains an out-of-bounds read in the send_ssi_file function (civetweb.c) that allows an attacker to cause a Denial of Service or Information Disclosure via a crafted SSI file. The CVE description specifies affected software and root cause; no explicit exploit details ...