Master of Httpd
ByteCTF2021 Master of HTTPD 决赛签到题 这道题的诞生 对国内某些CTF出题人打着httpd旗号出题却用stdin/stdout来和做交互的行为深感疑惑,简单的HTTP报文Parser也能算httpd?是不是再ARM/MIPS交叉编译一下就能号称IoT赛题了?23333 很久以前挖到过一个Authorization字段解码触发的栈溢出,应该是去年的CVE-2
Stack-based buffer overflow vulnerability in Vigor3900, Vigor2960, and Vigor300B with firmware prior to 1.5.1.1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
draytek vigor300b_firmware |
||
draytek vigor2960_firmware |
||
draytek vigor3900_firmware |