Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1930

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1930
Last Modified 05 Sep 2008 04:31:53
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1930

Summary

Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.

Vulnerable Systems

Application

  • An-httpd 1.38

  • An-httpd 1.39

  • An-httpd 1.40

  • An-httpd 1.41

  • An-httpd 1.41b

  • An-httpd 1.41c


References

BID - 6012

XF - an-http-socks4-bo(10410)

VULNWATCH - 20021021 AN HTTPD SOCKS4 username Buffer Overflow Vulnerability


Last Updated: 27 May 2016 10:37:32