vendor:
Sami HTTP Server
by:
badpack3t
7.5
CVSS
HIGH
Insufficient bounds checking
119
CWE
Product Name: Sami HTTP Server
Affected Version From: Sami HTTP Server Version 1.0.4
Affected Version To: Unknown
Patch Exists: No
Related CWE:
CPE: a:karja:sami_http_server:1.0.4
Platforms Tested:
2004
Vulnerability in Sami HTTP server
The vulnerability occurs in Sami HTTP server due to insufficient bounds checking when handling GET requests. An attacker can exploit this vulnerability to corrupt sensitive data, such as a return address, and gain control over the program's execution flow. This can lead to the execution of arbitrary code and potential denial of service.
Mitigation:
It is recommended to update to a patched version of Sami HTTP server that includes proper bounds checking when handling GET requests.