Vulnerabilities > CVE-2019-19943 - Double Free vulnerability in Pablosoftwaresolutions Quick 'N Easy web Server 3.3.8

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
pablosoftwaresolutions
CWE-415
exploit available

Summary

The HTTP service in quickweb.exe in Pablo Quick 'n Easy Web Server 3.3.8 allows Remote Unauthenticated Heap Memory Corruption via a large host or domain parameter. It may be possible to achieve remote code execution because of a double free.

Common Weakness Enumeration (CWE)

Exploit-Db

idEDB-ID:48111