Lucene search
MitreCVE-2002-1496HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1496
2004-09-0104:00:00
mitre
web.nvd.nist.gov
32
cve-2002-1496
null http server
buffer overflow
remote code execution
nvd
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.068
Percentile
94.0%
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header.
Affected configurations
Node
nulllogicnull_httpdRange≤0.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nulllogic | null_httpd | * | cpe:2.3:a:nulllogic:null_httpd:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2002-1496
2003-04-02 05:00:00
nessus
nessus
Null httpd Content-Length Header Handling Remote Overflow
2002-12-02 00:00:00
cvelist
cvelist
CVE-2002-1496
2004-09-01 04:00:00
exploitdb
exploitdb
Null HTTPd 0.5 - Remote Heap Overflow
2002-09-23 00:00:00
openvas
openvas
Null HTTPd Server Content-Length HTTP Header Buffer Overflow Vulnerability
2012-07-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.068
Percentile
94.0%
Related for CVE-2002-1496