Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNU Libmicrohttpd 基于栈的缓冲区溢出漏洞
Vulnerability Description
GNU Libmicrohttpd是GNU计划开发的一个小型的用来实现HTTP服务器的C类开发库,支持HTTP 1.1并可以同时侦听多个端口。 Libmicrohttpd 0.9.31及之前的版本中的‘MHD_digest_auth_check’函数中存在基于栈的缓冲区溢出漏洞,该漏洞源于当处理认证头时存在边界错误。当MHD_OPTION_CONNECTION_MEMORY_LIMIT被配置为较大的值时,远程攻击者可利用该漏洞造成拒绝服务或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A