Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable buffer overflow vulnerability exists in the HTTP header-parsing function of the Webroot BrightCloud SDK. The function bc_http_read_header incorrectly handles overlong headers, leading to arbitrary code execution. An unauthenticated attacker could impersonate a remote BrightCloud server to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Webroot BrightCloud SDK 缓冲区错误漏洞
Vulnerability Description
Webroot BrightCloud SDK是美国Webroot公司的一套用于检测网站安全的SDK(软件开发工具包)。 Webroot BrightCloud SDK中的HTTP报头解析函数存在基于堆的缓冲区溢出漏洞,该漏洞源于‘bc_http_read_header’函数错误的处理了过长的报头。攻击者可通过冒充远程BrightCloud服务器利用该漏洞执行任意的代码。
CVSS Information
N/A
Vulnerability Type
N/A