Vulnerability Details CVE-2003-1228
Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via an HTTP request with a long path.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.124
EPSS Ranking 93.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=107064887507504&w=2
- http://marc.info/?l=bugtraq&m=107090601705839&w=2
- http://secunia.com/advisories/10385/
- http://www.securiteam.com/unixfocus/5FP0C1FCAW.html
- http://www.securityfocus.com/bid/9871
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15474
- http://marc.info/?l=bugtraq&m=107064887507504&w=2
- http://marc.info/?l=bugtraq&m=107090601705839&w=2
- http://secunia.com/advisories/10385/
- http://www.securiteam.com/unixfocus/5FP0C1FCAW.html
- http://www.securityfocus.com/bid/9871
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15474