{"id": "CVE-2002-1658", "bulletinFamily": "NVD", "title": "CVE-2002-1658", "description": "Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges, unless htdigest is executed from a CGI program. Therefore this may not be a vulnerability.", "published": "2002-12-31T05:00:00", "modified": "2017-07-11T01:29:00", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1658", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/bid/5993", "http://marc.info/?l=bugtraq&m=103480856102007&w=2", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10414", "https://sardonix.org/audit/apache-45.html"], "cvelist": ["CVE-2002-1658"], "type": "cve", "lastseen": "2019-05-29T18:07:39", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "5644c5ff5ea12a62c5a0a14fe14d6bda"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "9ef2885e44de6c97000a91ce01b84487"}, {"key": "cpe23", "hash": "aaf75bc12ec34c7523330e6d2c97f71a"}, {"key": "cvelist", "hash": "029c7d626d4c573cf28672ed6a1ceef2"}, {"key": "cvss", "hash": "6f6410364e4cee78bd47ed1fc3d8dd5b"}, {"key": "cvss2", "hash": "a5cd124b7a72104d4054ea59c286c50d"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "f72d63de4a9cadb9ccc9a4e6b0807f61"}, {"key": "href", "hash": "e6536f105fc7889ec085405317b0927c"}, {"key": "modified", "hash": "0570c0ae817ff4e1462c3ba2dbea4266"}, {"key": "published", "hash": "2b93356e4ceb14bea8da1c7de7d2a57b"}, {"key": "references", "hash": "42a16ec71fe6f19744c4d696b2d348a5"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "767a8d7b20670fcf9a665af88f9d5b3f"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "b80a0d8be10d7a18f5e0a3a3cbf3a3589e12bf8c9a73480bd7323ef2c5dcd7e4", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:18233"]}], "modified": "2019-05-29T18:07:39"}, "score": {"value": 6.4, "vector": "NONE", "modified": "2019-05-29T18:07:39"}, "vulnersScore": 6.4}, "objectVersion": "1.3", "cpe": ["cpe:/a:apache:http_server:1.3.27", "cpe:/a:apache:http_server:1.3.3", "cpe:/a:apache:http_server:1.3.24", "cpe:/a:apache:http_server:1.3.22", "cpe:/a:apache:http_server:1.3.17", "cpe:/a:apache:http_server:1.3.6", "cpe:/a:apache:http_server:1.3.14", "cpe:/a:apache:http_server:1.3.1", "cpe:/a:apache:http_server:1.3.20", "cpe:/a:apache:http_server:1.3.19", "cpe:/a:apache:http_server:1.3.25", "cpe:/a:apache:http_server:1.3.4", "cpe:/a:apache:http_server:1.3.12", "cpe:/a:apache:http_server:1.3.26", "cpe:/a:apache:http_server:1.3.11", "cpe:/a:apache:http_server:1.3.18", "cpe:/a:apache:http_server:1.3.23", "cpe:/a:apache:http_server:1.3.9"], "affectedSoftware": [{"name": "apache http_server", "operator": "eq", "version": "1.3.1"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.12"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.27"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.9"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.24"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.14"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.20"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.26"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.18"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.11"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.19"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.23"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.4"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.17"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.3"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.25"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.6"}, {"name": "apache http_server", "operator": "eq", "version": "1.3.22"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:*", "cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"]}

{"osvdb": [{"lastseen": "2017-04-28T13:20:14", "bulletinFamily": "software", "description": "## Vulnerability Description\nA local overflow exists in Apache htdigest. The program fails to validate the length of the supplied 'user' variable resulting in a buffer overflow. With a specially crafted request, an attacker may be able to cause arbitrary code execution resulting in a loss of integrity.\n## Technical Description\nThe program htdigest is not SUID/SGID by default and can not be leveraged for additional privileges as a result of a default installation. This vulnerability only manifests if an administrator adds SUID or SGID privileges to the program, or if another program invokes it with increased privileges. It could also allow an attack vector if called from a web page.\n## Solution Description\nUpgrade to version 1.3.28 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nA local overflow exists in Apache htdigest. The program fails to validate the length of the supplied 'user' variable resulting in a buffer overflow. With a specially crafted request, an attacker may be able to cause arbitrary code execution resulting in a loss of integrity.\n## References:\nVendor URL: http://httpd.apache.org/\nMail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=103480856102007&w=2\nISS X-Force ID: 10414\n[CVE-2002-1658](https://vulners.com/cve/CVE-2002-1658)\nBugtraq ID: 5993\n", "modified": "2002-10-16T22:32:26", "published": "2002-10-16T22:32:26", "href": "https://vulners.com/osvdb/OSVDB:18233", "id": "OSVDB:18233", "type": "osvdb", "title": "Apache HTTP Server htdigest user Variable Overfow", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}