Vulnerability Details CVE-2002-0968
Buffer overflow in AnalogX SimpleServer:WWW 1.16 and earlier allows remote attackers to cause a denial of service (crash) and execute code via a long HTTP request method name.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.206
EPSS Ranking 95.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0106.html
- http://marc.info/?l=bugtraq&m=102563702928443&w=2
- http://www.analogx.com/contents/download/network/sswww.htm
- http://www.iss.net/security_center/static/9338.php
- http://www.osvdb.org/3780
- http://www.securityfocus.com/bid/5006
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0106.html
- http://marc.info/?l=bugtraq&m=102563702928443&w=2
- http://www.analogx.com/contents/download/network/sswww.htm
- http://www.iss.net/security_center/static/9338.php
- http://www.osvdb.org/3780
- http://www.securityfocus.com/bid/5006
Products affected by CVE-2002-0968
-
cpe:2.3:a:analogx:simpleserver_www:-
-
cpe:2.3:a:analogx:simpleserver_www:1.0.1
-
cpe:2.3:a:analogx:simpleserver_www:1.0.3
-
cpe:2.3:a:analogx:simpleserver_www:1.0.6
-
cpe:2.3:a:analogx:simpleserver_www:1.0.8
-
cpe:2.3:a:analogx:simpleserver_www:1.01
-
cpe:2.3:a:analogx:simpleserver_www:1.03
-
cpe:2.3:a:analogx:simpleserver_www:1.04
-
cpe:2.3:a:analogx:simpleserver_www:1.05
-
cpe:2.3:a:analogx:simpleserver_www:1.06
-
cpe:2.3:a:analogx:simpleserver_www:1.16