206 matches found
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
DEBIAN-CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
Buffer overflow
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
CVE-2021-3466
A flaw was found in libmicrohttpd in versions before 0.9.71. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data...
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
CVE-2021-3466
CVE-2021-3466 affects libmicrohttpd prior to 0.9.71. Root cause: a missing bounds check in post_process_urlencoded can trigger a buffer overflow, allowing a remote attacker to write arbitrary data in apps using libmicrohttpd. Impact per sources: high risk to confidentiality, integrity, and availa...
libmicrohttpd 缓冲区错误漏洞
GNU libmicrohttpd is a GNU open source application. Run the HTTP server as part of another application. A buffer overflow vulnerability exists in versions of libmicrohttpd prior to 0.9.71, which stems from the fact that a missing bounds check will result in a buffer overflow that can be exploited...
PT-2021-20628 · Unknown · Libmicrohttpd
Name of the Vulnerable Software and Affected Versions: libmicrohttpd version 0.9.70 Description: A flaw was found in libmicrohttpd, where a missing bounds check in the post process urlencoded function leads to a buffer overflow. This allows a remote attacker to write arbitrary data in an...
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
CVE-2021-3466
A flaw was found in libmicrohttpd. A missing bounds check in the postprocessurlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this vulnerability is to data confidentiality and...
openSUSE Security Update : libmicrohttpd (openSUSE-2017-728)
This update for libmicrohttpd fixes the following issues : - CVE-2013-7038: The MHDhttpunescape function in libmicrohttpd might have allowed remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read. bsc854443 -...
SUSE SLES12 Security Update : libmicrohttpd (SUSE-SU-2017:1576-1)
This update for libmicrohttpd fixes the following issues : - CVE-2013-7038: The MHDhttpunescape function in libmicrohttpd might have allowed remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read. bsc854443 -...
SUSE-SU-2017:1576-1 Security update for libmicrohttpd
This update for libmicrohttpd fixes the following issues: - CVE-2013-7038: The MHDhttpunescape function in libmicrohttpd might have allowed remote attackers to obtain sensitive information or cause a denial of service crash via unspecified vectors that trigger an out-of-bounds read. bsc854443 -...
Gentoo Security Advisory GLSA 201402-01
Gentoo Linux Local Security Checks GLSA 201402-01 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Amazon Linux: Security Advisory (ALAS-2014-353)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : libmicrohttpd (ALAS-2014-353)
Stack-based buffer overflow in the MHDdigestauthcheck function in libmicrohttpd before 0.9.32, when MHDOPTIONCONNECTIONMEMORYLIMIT is set to a large value, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long URI in an authentication header. The...
Important: libmicrohttpd
Issue Overview: Stack-based buffer overflow in the MHDdigestauthcheck function in libmicrohttpd before 0.9.32, when MHDOPTIONCONNECTIONMEMORYLIMIT is set to a large value, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long URI in an...
Fedora Update for libmicrohttpd FEDORA-2014-0939
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...