CVE-2002-1865

D-link Di-804 - Buffer Overflow

Title source: rule

Description

Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mark Litchfield · textdoshardware

https://www.exploit-db.com/exploits/21978

View Code ZIP pw:eip

References (3)

[Exploit, Vendor Advisory] http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0052.html

[Exploit] http://www.securityfocus.com/bid/6090

[Third Party Advisory] http://www.iss.net/security_center/static/10537.php

Scores

EPSS 0.0570

EPSS Percentile 90.3%

Classification

Status draft

Affected Products (11)

d-link/di-804

d-link/dl-704

d-link/dl-704

linksys/befw11s4

linksys/befw11s4

linksys/befw11s4

linksys/befw11s4

linksys/befw11s4

linksys/befw11s4

linksys/wap11

linksys/wap11

Timeline

Published Dec 31, 2002

Tracked Since Feb 18, 2026