Category Archives: vulnerability

HTTP Server Security Vulnerability: Please upgrade to 0.6.17

tl;dr A carefully crafted attack request can cause the contents of the HTTP parser’s buffer to be appended to the attacking request’s header, making it appear to come from the attacker. Since it is generally safe to echo back contents … Continue reading

Posted in vulnerability | 11 Comments