In MiniShare 1.4.1, there is a stack-based buffer overflow via an HTTP CONNECT request, which allows an malicious user to achieve arbitrary code execution, a similar issue to CVE-2018-19862 and CVE-2018-19861. NOTE: this product is discontinued.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
minishare project minishare 1.4.1 |