### [CVE-2019-1010218](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1010218)
![](https://img.shields.io/static/v1?label=Product&message=Latest%20Cherokee%20Web%20server&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=Upto%20Version%201.2.103%20(Current%20stable)%20%5Bfixed%3A%20There's%20no%20fix%20yet%5D%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Overflow%20-%20CWE-120&color=brightgreen)

### Description

Cherokee Webserver Latest Cherokee Web server Upto Version 1.2.103 (Current stable) is affected by: Buffer Overflow - CWE-120. The impact is: Crash. The component is: Main cherokee command. The attack vector is: Overwrite argv[0] to an insane length with execl. The fixed version is: There's no fix yet.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/CPAN-Security/Net-NVD
- https://github.com/Cole-Z/CVE-API-App
- https://github.com/DChandlerP/cvss-epss-demo
- https://github.com/garu/Net-NVD
- https://github.com/gashchukk/Vulnerabilities_DB_API
- https://github.com/marcoeg/mcp-nvd
- https://github.com/murtis78/WikiNess
- https://github.com/yoryio/Fedora_CVE_Detection_Script