CVE-2018-10088
CRITICAL EXPLOITED IN THE WILD NUCLEIXiongMai uc-httpd 1.0.0 - Buffer Overflow
Title source: llmExploitation Summary
CVE-2018-10088 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). EIP tracks 1 public exploit from researchers including Andrew Watson. A Nuclei detection template is also available.
AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in XiongMai uc-httpd 1.0.0 by sending a malformed POST request with an oversized username parameter. The payload consists of 85 'A' characters, which may crash the service or potentially allow arbitrary code execution under specific conditions.
Description
Buffer overflow in XiongMai uc-httpd 1.0.0 has unspecified impact and attack vectors, a different vulnerability than CVE-2017-16725.
Exploits (1)
This exploit demonstrates a buffer overflow vulnerability in XiongMai uc-httpd 1.0.0 by sending a malformed POST request with an oversized username parameter. The payload consists of 85 'A' characters, which may crash the service or potentially allow arbitrary code execution under specific conditions.
Nuclei Templates (1)
cpe:"cpe:2.3:a:xiongmaitech:uc-httpd"
References (2)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H