Buffer Overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1

Buffer Overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1

CVE-2003-0899 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when the characters are expanded to "&lt;" and "&gt;" sequences.

Learn more about our Web Application Penetration Testing UK.