CVE-2002-1930

An-httpd - Buffer Overflow

Title source: rule

Description

Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kanatoko · javaremotewindows

https://www.exploit-db.com/exploits/21955

View Code ZIP pw:eip

References (3)

[Exploit] http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0032.html

[Patch] http://www.iss.net/security_center/static/10410.php

[Exploit, Patch] http://www.securityfocus.com/bid/6012

Scores

EPSS 0.2345

EPSS Percentile 95.9%

Classification

Status draft

Affected Products (6)

an/an-httpd

an/an-httpd

an/an-httpd

an/an-httpd

an/an-httpd

an/an-httpd

Timeline

Published Dec 31, 2002

Tracked Since Feb 18, 2026