CVE-2007-1260

WebMod 0.48 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the connectHandle function in server.cpp in WebMod 0.48 allows remote attackers to execute arbitrary code via a long string in the Content-Length HTTP header.

Exploits (2)

exploitdb WORKING POC VERIFIED

by cybermind · cremotewindows

https://www.exploit-db.com/exploits/3395

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by thecybermind · poc

https://github.com/thecybermind/w48crash

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://osvdb.org/33834

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/22788

[Exploit, Vendor Advisory] http://secunia.com/advisories/24346

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32755

[Exploit] http://cybermind.user.stfunoob.com/w48crash/

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3395

Scores

EPSS 0.2341

EPSS Percentile 96.0%

Details

Status published

Products (1)

webmod/webmod 0.48

Published Mar 03, 2007

Tracked Since Feb 18, 2026