mini_httpd -- buffer overflow via snprintf
ACME Updates reports:
mini_httpd 1.21 and earlier allows remote attackers to obtain
sensitive information from process memory via an HTTP request with
a long protocol string, which triggers an incorrect response size
calculation and an out-of-bounds read.
(rene) ACME, the author, claims that the vulnerability is fixed
*after* version 1.22, released on 2015-12-28
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright