Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Lighttpd Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2007-4727 - Vulnerability Database
Lighttpd

Lighttpd Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2007-4727

Medium
Reference: CVE-2007-4727
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-4727
Title: Lighttpd Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Overview:

Buffer overflow in the fcgi_env_add function in mod_proxy_backend_fastcgi.c in the mod_fastcgi extension in lighttpd before 1.4.18 allows remote attackers to overwrite arbitrary CGI variables and execute arbitrary code via an HTTP request with a long content length as demonstrated by overwriting the SCRIPT_FILENAME variable aka a quotheader overflow.quot