Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote malicious users to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pldaniels altermime 0.1.11 |
||
pldaniels altermime 0.1.10 |