Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
N/A
Vulnerability Title
GNU libmicrohttpd 缓冲区错误漏洞
Vulnerability Description
GNU libmicrohttpd是美国GNU社区的一个应用程序。将HTTP服务器作为另一个应用程序的一部分来运行。 GNU libmicrohttpd 0.9.76之前版本存在安全漏洞,该漏洞源于数据边界解析不当,攻击者利用该漏洞可以导致远程DoS(拒绝服务)。
CVSS Information
N/A
Vulnerability Type
N/A