RSS   Vulnerabilities for 'Libhtp'   RSS

2019-10-09
 
CVE-2019-17420

CWE-20
 

 
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending.

 
2019-04-04
 
CVE-2018-10243

CWE-125
 

 
htp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allows remote attackers to cause a heap-based buffer over-read via an authorization digest header.

 

 >>> Vendor: OISF 3 Products
Suricata
Libhtp
Suricata-update


Copyright 2024, cxsecurity.com

 

Back to Top