Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HTTP authentication implementation in Geo++ GNCASTER 1.4.0.7 and earlier allows remote attackers to read authentication headers of other users via a large request with an incorrect authentication attempt, which includes sensitive memory in the response. NOTE: this is referred to as a "memory leak" by some sources, but is better characterized as "memory disclosure."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Geopp Geo++ GNCASTER HTTP认证信息泄露漏洞
Vulnerability Description
Geo++ GNCASTER的HTTP认证执行中允许远程攻击者借助不正确认证请求读取其他用户的身份验证标题信息,这些信息包含响应的敏感内存。注意:这和一些来源的"内存泄露"有关,但是"记忆披露"特征更多。
CVSS Information
N/A
Vulnerability Type
N/A