Security Advisory

CVE-2019-17502

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-12 19:53:12

Last updated 2024-08-05 01:40:15

Assigner mitre

State PUBLISHED

Description

Hydra through 0.1.8 has a NULL pointer dereference and daemon crash when processing POST requests that lack a Content-Length header. read.c, request.c, and util.c contribute to this. The process_header_end() function calls boa_atoi(), which ultimately calls atoi() on a NULL pointer.

← Browse all CVEs View on cve.org ↗