Lucene search
HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-1496
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.068
Percentile
94.0%
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header.
Affected configurations
Node
nulllogicnull_httpdRange≤0.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nulllogic | null_httpd | * | cpe:2.3:a:nulllogic:null_httpd:*:*:*:*:*:*:*:* |
Related
openvas
openvas
Null HTTPd Server Content-Length HTTP Header Buffer Overflow Vulnerability
2012-07-27 00:00:00
exploitdb
exploitdb
Null HTTPd 0.5 - Remote Heap Overflow
2002-09-23 00:00:00
nessus
nessus
Null httpd Content-Length Header Handling Remote Overflow
2002-12-02 00:00:00
cvelist
cvelist
CVE-2002-1496
2004-09-01 04:00:00
cve
cve
CVE-2002-1496
2004-09-01 04:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.068
Percentile
94.0%
Related for NVD:CVE-2002-1496