sthttpd

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Supported fork of the thttpd web server
Version 2.27.1-3 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1542 2.27.1-3 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-26843 AVG-1542 Medium Yes Arbitrary code execution
An issue was discovered in sthttpd through 2.27.1. On systems where the strcpy function is implemented with memcpy, the de_dotdot function may cause a...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-333 2.27.0-3 2.27.1-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2017-10671 AVG-333 High Yes Arbitrary code execution
Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service (daemon...

Advisories

Date Advisory Group Severity Type
09 Feb 2018 ASA-201802-5 AVG-333 High arbitrary code execution