CVE-2019-1010218

Summary

Cherokee Webserver Latest Cherokee Web server Upto Version 1.2.103 (Current stable) is affected by: Buffer Overflow - CWE-120. The impact is: Crash. The component is: Main cherokee command. The attack vector is: Overwrite argv[0] to an insane length with execl. The fixed version is: There's no fix yet.

Affected Software

VendorProductVersion RangeStatus
Cherokee WebserverLatest Cherokee Web serverUpto Version 1.2.103 (Current stable) [fixed: There's no fix yet]affected

Weaknesses

  • CWE-120: Buffer Overflow - CWE-120

ADP Enrichment

CVE Program Container

Additional References

References