CVE-2004-0292

KarjaSoft Sami HTTP Server 1.0.4 - Buffer Overflow via Long HTTP GET Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0292. PoCs published by badpack3t.

AI-analyzed exploit summary This exploit sends a maliciously crafted HTTP GET request with an excessively long URI to trigger a buffer overflow in Sami HTTP Server 1.0.4, resulting in a denial of service (DoS). The PoC demonstrates the vulnerability by crashing the server due to insufficient bounds checking.

Description

Buffer overflow in KarjaSoft Sami HTTP Server 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED
by badpack3t · cremotewindows
https://www.exploit-db.com/exploits/23714

This exploit sends a maliciously crafted HTTP GET request with an excessively long URI to trigger a buffer overflow in Sami HTTP Server 1.0.4, resulting in a denial of service (DoS). The PoC demonstrates the vulnerability by crashing the server due to insufficient bounds checking.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Sami HTTP Server 1.0.4
No auth needed
Prerequisites: Network access to the target server · Sami HTTP Server 1.0.4 running on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15237
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107703630913205&w=2
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9679

Scores

EPSS 0.0762
EPSS Percentile 93.8%

Details

Status published
Products (1)
karjasoft/sami_http_server 1.0.4
Published Nov 23, 2004
Tracked Since Feb 18, 2026