Signature Detail

Short Name	HTTP:OVERFLOW:LIBHTTPD-GET-OF
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	HTTP
Release Date	2003/04/22
Update Number	1213
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+

HTTP: LibHTTPD GET Request Buffer Overflow

This signature detects attempts to exploit a known vulnerability against LibHTTPd. LibHTTPd 1.2 and earlier are vulnerable. Attackers can send a maliciously crafted GET request to execute arbitrary code on the host.

Extended Description

Light httpd is prone to a remotely exploitable buffer overflow condition. This overflow can be triggered by sending the server an excessively long GET request. As Light httpd drops user privileges when running, exploitation of this issue may result in the execution of arbitrary attacker-supplied commands with the privileges of the 'nobody' user.

Affected Products

Light httpd 0.1.0

References

BugTraq: 6162
CVE: CVE-2002-1549
URL: http://www.hughes.com.au/products/libhttpd/
URL: http://www.securiteam.com/unixfocus/6H00I2060I.html
URL: http://www.security.nnov.ru/files/libhttpdbo.c

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: LibHTTPD GET Request Buffer Overflow

Extended Description

Affected Products

References