CVE-2003-1032

Pi3web - Buffer Overflow

Title source: rule

Description

Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly involving a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by posidron · cdoswindows

https://www.exploit-db.com/exploits/22718

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=105465813729100&w=2

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1006913

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/7787

[Mailing List] http://marc.info/?l=bugtraq&m=105484265218325&w=2

Scores

EPSS 0.0751

EPSS Percentile 91.8%

Details

Status published

Products (1)

pi3/pi3web 2.0.2_beta_1

Published Feb 17, 2004

Tracked Since Feb 18, 2026