CVE-1999-1457

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 16, 1999
Updated: Sep 10, 2008

Summary

CVE-1999-1457 is a buffer overflow vulnerability affecting older versions of the thttpd HTTP server (before 2.04-31). The issue stems from a flaw in the tdate_parse function, which fails to handle long date strings properly. An attacker can exploit this vulnerability by sending a maliciously crafted date string to the server, causing a buffer overflow and potentially executing arbitrary commands. This flaw poses a significant risk to systems running the affected version of thttpd and requires immediate patching to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share