CVE-2003-1032

pi3web 2.0.2 Beta 1 - Denial of Service via Malformed URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-1032. PoCs published by posidron.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Pi3Web 2.0.2 Beta 1 by sending a malformed HTTP GET request. The PoC triggers a denial of service (DoS) condition due to insufficient bounds checking of URI parameters.

Description

Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly involving a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED
by posidron · cdoswindows
https://www.exploit-db.com/exploits/22718

This exploit demonstrates a buffer overflow vulnerability in Pi3Web 2.0.2 Beta 1 by sending a malformed HTTP GET request. The PoC triggers a denial of service (DoS) condition due to insufficient bounds checking of URI parameters.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Pi3Web 2.0.2 Beta 1
No auth needed
Prerequisites: Network access to the target server · Pi3Web 2.0.2 Beta 1 running on a Windows platform
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105465813729100&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1006913
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/7787
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105484265218325&w=2

Scores

EPSS 0.0356
EPSS Percentile 87.8%

Details

Status published
Products (1)
pi3/pi3web 2.0.2_beta_1
Published Feb 17, 2004
Tracked Since Feb 18, 2026