MicroHttpServer: Remote buffer overflow in lib/server.c
Posted: Sun Feb 18, 2024 3:22 am
Originally Posted by https://github.com/Halcy0nic
remote buffer overflow in the C version of MicroHttpServer (through commit a8ab029). This one is an off-by-one global buffer overflow in the function _ParseHeader lib/server.c, line 208:
MicroHttpServer/c-version/lib/server.c
Line 208 in a8ab029
n = recv(clisock, p + i, 1, 0);
The overflow happens at roughly 15330 bytes in the request URI when reading from the network socket.
https://github.com/starnight/MicroHttpServer/issues/8
remote buffer overflow in the C version of MicroHttpServer (through commit a8ab029). This one is an off-by-one global buffer overflow in the function _ParseHeader lib/server.c, line 208:
MicroHttpServer/c-version/lib/server.c
Line 208 in a8ab029
n = recv(clisock, p + i, 1, 0);
The overflow happens at roughly 15330 bytes in the request URI when reading from the network socket.
https://github.com/starnight/MicroHttpServer/issues/8