PT-2019-12966 · Goahead · Goahead

Published

2019-06-14

Updated

2021-07-21

CVE-2019-12822

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GoAhead versions prior to 4.1.1 GoAhead versions 5.x prior to 5.0.1

Description A header parsing issue in the http.c file causes a memory assertion and out-of-bounds memory reference, potentially leading to a denial-of-service (DoS). This can be triggered by a colon on a line by itself.

Recommendations For GoAhead versions prior to 4.1.1, update to version 4.1.1 or later. For GoAhead versions 5.x prior to 5.0.1, update to version 5.0.1 or later.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-917

Related Identifiers

CVE-2019-12822

Affected Products

Goahead

PT-2019-12966 · Goahead · Goahead

CVE-2019-12822

Weakness Enumeration

Related Identifiers

Affected Products

References · 4