CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2428

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://data.goahead.com/Software/Webserver/2.1.8/release.htm#fixed-vulnerability-to-malicious-code-in-webs-c
http://data.goahead.com/Software/Webserver/2.1.8/release.htm#fixed-vulnerability-to-malicious-code-in-webs-c

Products affected by CVE-2002-2428

Goahead » Goahead Webserver » Version: 2.0

cpe:2.3:a:goahead:goahead_webserver:2.0
Goahead » Goahead Webserver » Version: 2.1

cpe:2.3:a:goahead:goahead_webserver:2.1
Goahead » Goahead Webserver » Version: 2.1.1

cpe:2.3:a:goahead:goahead_webserver:2.1.1
Goahead » Goahead Webserver » Version: 2.1.2

cpe:2.3:a:goahead:goahead_webserver:2.1.2
Goahead » Goahead Webserver » Version: 2.1.3

cpe:2.3:a:goahead:goahead_webserver:2.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2428

Products

Pricing

Contact Us