Vulnerability Details CVE-2002-1930
Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.235
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0032.html
- http://www.iss.net/security_center/static/10410.php
- http://www.securityfocus.com/bid/6012
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0032.html
- http://www.iss.net/security_center/static/10410.php
- http://www.securityfocus.com/bid/6012
Products affected by CVE-2002-1930
-
cpe:2.3:a:an:an-httpd:1.38
-
cpe:2.3:a:an:an-httpd:1.39
-
cpe:2.3:a:an:an-httpd:1.40
-
cpe:2.3:a:an:an-httpd:1.41
-
cpe:2.3:a:an:an-httpd:1.41b
-
cpe:2.3:a:an:an-httpd:1.41c