Salvo 'LtWorf' Tomaselli

CVE-2023-46586 WRITEUP CRITICAL WRITEUP

weborf 0.17-0.20 - Buffer Overflow in CGI Path Handling

cgi.c in weborf .0.17, 0.18, 0.19, and 0.20 (before 1.0) lacks '\0' termination of the path for CGI scripts because strncpy is misused.

CVSS 9.1

View Code

CVE-2023-46586 WRITEUP CRITICAL WRITEUP

weborf 0.17-0.20 - Buffer Overflow in CGI Path Handling

cgi.c in weborf .0.17, 0.18, 0.19, and 0.20 (before 1.0) lacks '\0' termination of the path for CGI scripts because strncpy is misused.

CVSS 9.1

View Code