Buffer overflow in Gnu Libmicrohttpd
CVE-2013-7039
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly exe…
Vulnerability class: Buffer Overflow
EPSS: 0.033 (86.9th percentile) — read the EPSS interpretation.
Affected products
- Gnu Libmicrohttpd — versions 0.9.16, 0.9.17, 0.9.18
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (vendor-advisory, x_refsource_GENTOO)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (mailing-list, x_refsource_MLIST)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)