Zero-Day Research: ehttp Use-after-Free and Out-of-Bounds Read
The ehttp library advertises itself as a ‘simple HTTP server based on epoll’. The primary goal of the library is to provide an easy-to-use HTTP microservice with JSON support. The library supports HTTP 1.0/1.1 with GET and POST request methods. When utilizing a new library, I always execute various fuzz tests against the library to …
Zero-Day Research: ehttp Use-after-Free and Out-of-Bounds Read Read More »