2 matches found
Null pointer dereference
The checkHTTPpassword function in http.c in ntop 3.3.10 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an Authorization HTTP header that lacks a : colon character in the base64-decoded string...
ntop 3.3.10 - HTTP Basic Authentication Null Pointer Dereference Denial of Service
ntop 3.3.10 - HTTP Basic Authentication Null Pointer Dereference Denial of Service source: https://www.securityfocus.com/bid/36074/info The 'ntop' tool is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when crafted HTTP Basic Authentication credential...