Heap-based buffer overflow in the array_push function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries.
Max CVSS
7.5
EPSS Score
2.02%
Published
2006-06-27
Updated
2017-07-20
Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header.
Max CVSS
7.5
EPSS Score
1.81%
Published
2005-03-06
Updated
2008-09-05
2 vulnerabilities found