CVE-2002-1496

CVE-2002-1496 describes a heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier, triggered by a negative Content-Length HTTP header. The vulnerability allows remote attackers to execute arbitrary code. The vulnerability is reported in both the original CVE listing and in multiple advis...

CVE-2002-1497

Technical details about this CVE are not provided in the connected documents. The initial description notes an XSS in Null HTTP Server 0.5.0 and earlier, allowing arbitrary HTML in 404 responses. Monitor for updates.