Skip to main content

CVE-2007-4060

Severity High
Score 9/10

Summary

Multiple buffer overflows in the HttpSprockMake function in http.c in Frank Yaul corehttp 0.5.3alpha allow remote attackers to execute arbitrary code via a long string in the (1) method name or (2) URI in an HTTP request.

  • LOW
  • NETWORK
  • NONE
  • PARTIAL
  • PARTIAL
  • COMPLETE

References

Advisory Timeline

  • Published