Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a long query parameter.
Software | From | Fixed in |
---|---|---|
sambar / sambar_server | 6.0 | 6.0.x |
sambar / sambar_server | 6.0-beta3 | 6.0-beta3.x |