Описание
mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size calculation and an out-of-bounds read.
Уязвимые конфигурации
Конфигурация 1Версия до 1.21 (включая)
cpe:2.3:a:acme:mini_httpd:*:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00234
Низкий
5 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
debian
почти 11 лет назад
mini_httpd 1.21 and earlier allows remote attackers to obtain sensitiv ...
github
больше 3 лет назад
mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size calculation and an out-of-bounds read.
EPSS
Процентиль: 46%
0.00234
Низкий
5 Medium
CVSS2
Дефекты
CWE-119