|
Tomahawk Technologies SteelArrow Chunked Transfer Encoding Heap Overflow Vulnerability
A heap overflow vulnerability has been reported for SteelArrow when handling chunked encoded transfers. The HTTP protocol specifies a method of data encoding called 'Chunked Encoding', designed to facilitate fragmentation of HTTP requests in transit. When processing requests for .ARO files coded with the 'Chunked Encoding' mechanism, SteelArrow fails to properly calculate required buffer sizes. |
|
 Privacy Statement |
