Acme mini_httpd Protocol String Handling Memory Disclosure
Medium Nessus Plugin ID 90925
SynopsisThe remote web server is affected by an information disclosure vulnerability.
DescriptionThe Acme mini_httpd web server running on the remote host is affected by a flaw in the add_headers() function within file mini_httpd.c that is triggered when handling HTTP requests that have a very long protocol string. An unauthenticated, remote attacker can exploit this, via a crafted request, to cause an out-of-bounds read error, resulting in the disclose of sensitive information in process memory.
SolutionIf possible, upgrade to Acme mini_httpd version 1.23 or later. For vendor hardware, such as modems or industrial control devices, ensure that the firmware is current and/or its net access is limited to trusted networks only.