CVE-2017-17663

Опубликовано: 06 фев. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.

Ссылки

http://acme.com/updates/archive/199.html
Third Party Advisory
http://acme.com/updates/archive/199.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:acme:mini_httpd:*:*:*:*:*:*:*:*

Версия до 1.28 (исключая)

cpe:2.3:a:acme:thttpd:*:*:*:*:*:*:*:*

Версия до 2.28 (исключая)

EPSS

Процентиль: 68%

0.00578

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2017-17663

CVSS3: 9.8

ubuntu

около 8 лет назад

The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.

CVE-2017-17663

CVSS3: 9.8

debian

около 8 лет назад

The htpasswd implementation of mini_httpd before v1.28 and of thttpd b ...

GHSA-mrjc-pvrp-jc53

CVSS3: 9.8

github

больше 3 лет назад

The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.

EPSS

Процентиль: 68%

0.00578

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119