CVE-1999-0235

NCSA WebServer 1.4.1 and below - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0235.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in NCSA HTTPd 1.3 by overflowing the username field with a crafted GET request containing NOP sleds and shellcode. The exploit calculates the return address using an offset from the stack pointer and executes arbitrary code (a shell) with the privileges of the webserver process.

Description

Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access.

Exploits (2)

exploitdb WORKING POC

cremotelinux

https://www.exploit-db.com/exploits/21050

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in NCSA HTTPd 1.3 by overflowing the username field with a crafted GET request containing NOP sleds and shellcode. The exploit calculates the return address using an offset from the stack pointer and executes arbitrary code (a shell) with the privileges of the webserver process.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NCSA HTTPd 1.3 and earlier

No auth needed

Prerequisites: Network access to the target web server · NCSA HTTPd 1.3 or earlier running on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

exploitdb WORKING POC

cremotelinux

https://www.exploit-db.com/exploits/21049

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in NCSA HTTPd 1.3 by sending a crafted GET request with an overly long username field containing shellcode. The shellcode spawns a reverse shell, allowing remote code execution with the privileges of the web server process.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NCSA HTTPd 1.3 and earlier

No auth needed

Prerequisites: Network access to the target server · Target running NCSA HTTPd 1.3 or earlier

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0235

Scores

EPSS 0.0330

EPSS Percentile 87.6%

Details

Status published

Products (3)

ncsa/ncsa_web_server 1.3

ncsa/ncsa_web_server 1.4

ncsa/ncsa_web_server 1.4.1

Published Feb 17, 1995

Tracked Since Feb 18, 2026