CVE-2013-7039

Medium CVSS 5.1

Overview

Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.

CWE: CWE-119 Published: 2013-12-13T18:55:05.787

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.1 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags