Simple Web Server (SWS) 0.0.4 up to and including 0.1.0 does not properly handle when the recv function call fails, which may allow remote malicious users to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sws sws simple web server 0.0.3 |
||
sws sws simple web server 0.0.4 |
||
sws sws simple web server 0.1.0 |
||
sws sws simple web server 0.1.1 |