Off-by-one Error in alterMIME 0.1.10 and 0.1.11: Denial of Service via x-header

Off-by-one Error in alterMIME 0.1.10 and 0.1.11: Denial of Service via x-header

CVE-2002-1721 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.

Learn more about our Web Application Penetration Testing UK.