CVE-2002-2268

Netdave Webster HTTP Server - Memory Corruption

Title source: rule

Description

Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16970

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16802

View Code ZIP pw:eip

metasploit WORKING POC GOOD

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/kolibri_http.rb

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by aushack · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/webster_http.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://seclists.org/lists/bugtraq/2002/Dec/0013.html

[Exploit] http://www.securiteam.com/windowsntfocus/6R0030A6AY.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/6289

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/10727

Scores

EPSS 0.7307

EPSS Percentile 98.8%

Classification

CWE

CWE-119

Status draft

Affected Products (1)

netdave/webster_http_server

Timeline

Published Dec 31, 2002

Tracked Since Feb 18, 2026