A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header.
References
Link | Resource |
---|---|
https://www.fortiguard.com/psirt/FG-IR-20-126 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2021-01-14T16:01:57
Updated: 2021-01-14T16:01:57
Reserved: 2020-11-24T00:00:00
Link: CVE-2020-29019
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-01-14T16:15:18.180
Modified: 2021-01-20T20:45:37.003
Link: CVE-2020-29019
JSON object: View
Redhat Information
No data.
CWE