CVE-2012-10053 in Simple Web Serverالمعلومات

الملخص

بحسب MITRE • 08/08/2025

Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf() without proper bounds checking, leading to a buffer overflow on the stack. This flaw allows remote attackers to execute arbitrary code with the privileges of the web server process. The vulnerability is triggered before authentication.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulnCheck

حجز

08/08/2025

إفشاء

08/08/2025

الاعتدال

تمت الموافقة

إدخال

VDB-319289

CPE

جاهز

CWE

CWE-121 (مؤكد)

استغلال

تحميل

CVSS

7.3 (VulDB)

EPSS

0.76348

KEV

لا

النشاطات

منخفض جدًا

القطاع

Transportation, Hospital, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-10053
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-10053
CVE Details	https://www.cvedetails.com/cve/CVE-2012-10053/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!