CNNVD-202508-782 Information
CNNVD ID
CNNVD-202508-782
Related CVE
- CNNVD Published: 2025-08-08
Description (Chinese)
PMSoftware Simple Web Server是PMSoftware开源的一个简单的HTTP服务器应用。 PMSoftware Simple Web Server 2.2 rc2版本存在安全漏洞,该漏洞源于Connection HTTP标头处理不当,可能导致栈缓冲区溢出和远程代码执行。
Description (English)
PMSoftware Simple Web Server is a simple HTTP server application for PMSoftware open source. There is a security loophole in PMSoftware Simple Web Server version 2.2 rc2, which stems from inadequate handling of the HTTP header, which could lead to spilling out of the fence and remote code implementation.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PMSoftware
Published
2025-08-08
Last Modified
2026-02-24
References
http://ghostinthelab.wordpress.com/2012/07/19/simplewebserver-2-2-rc2-remote-buffer-overflow-exploit/ http://www.pmx.it/software/sws.asp https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ https://www.exploit-db.com/exploits/19937 https://www.exploit-db.com/exploits/20028 https://www.vulncheck.com/advisories/simple-web-server-connection-header-buffer-overflow https://access.redhat.com/security/cve/cve-2012-10053
Patch
https://www.pmx.it/software/sws.asp
Share on: