Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
uhttpd in OpenWrt through 18.06.5 and 19.x through 19.07.0-rc2 has an integer signedness error. This leads to out-of-bounds access to a heap buffer and a subsequent crash. It can be triggered with an HTTP POST request to a CGI script, specifying both "Transfer-Encoding: chunked" and a large negative Content-Length value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenWrt uhttpd 缓冲区错误漏洞
Vulnerability Description
OpenWrt是一套针对嵌入式设备的Linux操作系统。uhttpd是其中的一个HTTP服务。 OpenWrt 18.06.5及之前版本和19.x版本至19.07.0-rc2版本中的uhttpd存在缓冲区错误漏洞。攻击者可借助特制请求利用该漏洞造成拒绝服务(崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A