Lucene search

[email protected]CVE-2002-2400

HistoryNov 01, 2007 - 5:00 p.m.

CVE-2002-2400

2007-11-0117:00:00

CWE-119

[email protected]

web.nvd.nist.gov

buffer overflow

libhttpd 1.2

remote attackers

denial of service

execute arbitrary code

http post request

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.128 Low

EPSS

Percentile

95.5%

JSON

Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.

Affected configurations

NVD

Node

hughes_technologieslibhttpdMatch1.2

CPENameOperatorVersion
hughes_technologies:libhttpdhughes technologies libhttpdeq1.2

CPE	Name	Operator	Version
hughes_technologies:libhttpd	hughes technologies libhttpd	eq	1.2

References

archives.neohapsis.com/archives/bugtraq/2002-11/0305.html

marc.info/?l=bugtraq&m=103720432411860&w=2

www.iss.net/security_center/static/10615.php

www.securiteam.com/unixfocus/6H00I2060I.html

www.securityfocus.com/bid/6172

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.128 Low

EPSS

Percentile

95.5%

JSON

Related for CVE-2002-2400

nvd1 cvelist1