CVE-2023-27371
- EPSS 0.08%
- Published 28.02.2023 20:15:10
- Last modified 21.11.2024 07:52:46
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST ...
- EPSS 0.42%
- Published 25.03.2021 19:15:15
- Last modified 21.11.2024 06:21:36
A flaw was found in libmicrohttpd. A missing bounds check in the post_process_urlencoded function leads to a buffer overflow, allowing a remote attacker to write arbitrary data in an application that uses libmicrohttpd. The highest threat from this v...
CVE-2013-7038
- EPSS 0.95%
- Published 13.12.2013 18:55:05
- Last modified 11.04.2025 00:51:21
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an out-of-bounds read.
CVE-2013-7039
- EPSS 2.39%
- Published 13.12.2013 18:55:05
- Last modified 11.04.2025 00:51:21
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitr...