CVE-2002-2295

pico_server 2.0 beta 1-5 - Buffer Overflow via Long TCP Stream or HTTP Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2295. PoCs published by Matthew Murphy.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow in Pserv by sending an HTTP request with an excessively long HTTP version specifier. The vulnerability allows an attacker to corrupt memory on the system stack, potentially leading to remote code execution.

Description

Buffer overflow in Pico Server (pServ) 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a 1024-byte TCP stream message, which triggers an off-by-one buffer overflow, or (2) a long method name in an HTTP request, (3) a long version number in an HTTP request, (4) a long User-Agent header, or (5) a long file path.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Matthew Murphy · textdoslinux

https://www.exploit-db.com/exploits/22056

View Code ZIP pw:eip

This exploit demonstrates a buffer overflow in Pserv by sending an HTTP request with an excessively long HTTP version specifier. The vulnerability allows an attacker to corrupt memory on the system stack, potentially leading to remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Pserv (version not specified)

No auth needed

Prerequisites: Network access to the target Pserv instance

MITRE ATT&CK