Описание
Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sws:sws_simple_web_server:0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:sws:sws_simple_web_server:0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:sws:sws_simple_web_server:0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:sws:sws_simple_web_server:0.1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02071
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.
EPSS
Процентиль: 84%
0.02071
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other