Vulnerability Details CVE-2002-2286
The parse-get function in utils.c for apt-www-proxy 0.1 allows remote attackers to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0081.html
- http://www.securityfocus.com/bid/6339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10816
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0081.html
- http://www.securityfocus.com/bid/6339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10816
Products affected by CVE-2002-2286
-
cpe:2.3:a:apt-www-proxy:apt-www-proxy:0.1