![]() ![]() The second flaw, CVE-2019-5097, also affects the same part of the software and could also be exploited by sending a specially crafted HTTP request. The flaw affects GoAhead Web Server versions 5.0.1, 4.1.1, and 3.6.5. ![]() The most serious flaw, CVE-2019-5096, is a remote code execution vulnerability that arises when the web server attempts to process multi-part and form-data requests.Īn attacker could exploit the vulnerability by sending a specially crafted HTTP request which would trigger a use-after-free condition and corrupt heap structures, which could allow the execution of malicious code. GoAhead EmbedThis is an embedded web server for embedded devices. Two vulnerabilities have been identified in GoAhead’s EmbedThis Web Server software, which is used by hundreds of millions of Internet of Things (IoT) devices, one of which is a critical flaw that could allow an attacker to take full control of a vulnerable device. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |