CVE-2002-1904

2005-06-2804:00:00

mitre

www.cve.org

buffer overflow

log function

gaztek ghttpd

AI Score

7.9

Confidence

High

EPSS

0.024

Percentile

90.0%

JSON

Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request.

References

lynorics.sundawn.net/prog/ghttpd.html#versionen

online.securityfocus.com/archive/1/295141

www.iss.net/security_center/static/10361.php

www.securityfocus.com/bid/5960