Stack-Based Buffer Overflow in libmicrohttpd Affects Remote Authentication
CVE-2013-7039

Currently unrated

Key Information:

Vendor

Gnu
Status
LIBMicrohttpd
Vendor
CVE Published:
13 December 2013

What is CVE-2013-7039?

A stack-based buffer overflow vulnerability exists in the MHD_digest_auth_check function of libmicrohttpd prior to version 0.9.32. This flaw is triggered when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to an excessively large value, leading to the potential for remote attackers to exploit it by sending a crafted long URI in an authentication header. Consequently, this could result in a denial of service by crashing the application or potentially allowing unauthorized remote code execution.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://bugzilla.redhat.com/show_bug.cgi?id=1039390
x_refsource_CONFIRM
http://www.securityfocus.com/bid/64138
vdb-entryx_refsource_BID
https://bugs.gentoo.org/show_bug.cgi?id=493450
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.