CVE-2002-0142

Pi3web - Denial of Service

Title source: rule

Description

CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by aT4r · cremotewindows

https://www.exploit-db.com/exploits/21225

View Code ZIP pw:eip

References (6)

[Product] http://sourceforge.net/tracker/index.php?func=detail&aid=505583&group_id=17753&atid=317753

[Third Party Advisory, VDB Entry] http://online.securityfocus.com/archive/1/250126

[Vendor Advisory] http://www.iss.net/security_center/static/7880.php

[Mailing List] http://marc.info/?l=bugtraq&m=101164598828093&w=2

[Mailing List] http://marc.info/?l=ntbugtraq&m=101102275316307&w=2

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/3866

Scores

EPSS 0.0568

EPSS Percentile 90.4%

Details

Status published

Products (1)

pi3/pi3web 2.0

Published Mar 25, 2002

Tracked Since Feb 18, 2026