Summary
CoreHTTP is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input.
Successful attacks can compromise the affected software and possibly the computer.
CoreHTTP 0.5.3.1 is vulnerable
other versions may also be affected.
References
Updated on 2017-03-28
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft IIS WebDAV Remote Authentication Bypass Vulnerability
- Apache Traffic Server Synthetic Health Checks Remote DoS Vulnerability
- Zeus Web Server 'SSL2_CLIENT_HELLO' Remote Buffer Overflow Vulnerability
- Serva32 Directory Traversal and Denial of Service Vulnerabilities
- Apache 2.0.39 Win32 directory traversal