CVEs-PoC/2020/CVE-2020-11100.md at 860e02050fe0cfa14d092faefbaafd5bd449bbcb

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-31 01:49:30 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via a crafted HTTP/2 request, possibly causing remote code execution.

POC

Reference

http://packetstormsecurity.com/files/157323/haproxy-hpack-tbl.c-Out-Of-Bounds-Write.html

Github

https://github.com/ARPSyndicate/cve-scores
https://github.com/Live-Hack-CVE/CVE-2020-11100

830 B Raw Blame History

CVE-2020-11100

Description

POC

Reference

Github

830 B

Raw Blame History