Arbitrary Code Execution via Integer Overflow in FreeBSD Fetch

Arbitrary Code Execution via Integer Overflow in FreeBSD Fetch

CVE-2004-1053 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Integer overflow in fetch on FreeBSD 4.1 through 5.3 allows remote malicious servers to execute arbitrary code via certain HTTP headers in an HTTP response, which lead to a buffer overflow.

Learn more about our Cis Benchmark Audit For Server Software.