N/A

Off-by-one error in src/http.c in CoreHTTP 0.5.3.1 and earlier allows remote attackers to cause a denial of service or possibly execute arbitrary code via an HTTP request with a long first line that triggers a buffer overflow. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2007-4060.

N/A

N/A

CoreHTTP 'src/http.c'单字节溢出溢出漏洞

CoreHTTP是一款小型的Web服务器。 CoreHTTP没有对HTTP请求执行充分的输入验证，在src/http.c文件45和46行的sscanf()调用可能触发单字节溢出： 45: sscanf(parentsprock->buffer, 46: "%" PATHSIZE_S "[A-Za-z] %" PATHSIZE_S "s%*[ \t\n]", req, url); req和url缓冲区所声明的大小为256字节(PATHSIZE)，但sscanf()调用可向这些缓冲区写入256字节(PATHS

N/A

N/A