AVG-333

Package sthttpd
Status Fixed
Severity High
Type arbitrary code execution
Affected 2.27.0-3
Fixed 2.27.1-1
Current 2.27.1-1 [community]
Ticket None
Created Thu Jun 29 14:00:29 2017
Issue Severity Remote Type Description
CVE-2017-10671 High Yes Arbitrary code execution
Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service (daemon...
Date Advisory Package Description
09 Feb 2018 ASA-201802-5 sthttpd arbitrary code execution