Vulnerability Details CVE-2002-1904
Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.084
EPSS Ranking 91.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://lynorics.sundawn.net/prog/ghttpd.html#versionen
- http://online.securityfocus.com/archive/1/295141
- http://www.iss.net/security_center/static/10361.php
- http://www.securityfocus.com/bid/5960
- http://lynorics.sundawn.net/prog/ghttpd.html#versionen
- http://online.securityfocus.com/archive/1/295141
- http://www.iss.net/security_center/static/10361.php
- http://www.securityfocus.com/bid/5960