CVE-2009-3586

CoreHTTP 0.5.3.1 - Denial of Service and Possible Remote Code Execution via Long HTTP Request First Line

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3586. PoCs published by Patroklos Argyroudis.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in CoreHTTP web server versions <= 0.5.3.1. It sends a crafted HTTP request with an oversized payload to trigger a denial of service (DoS) condition.

Description

Off-by-one error in src/http.c in CoreHTTP 0.5.3.1 and earlier allows remote attackers to cause a denial of service or possibly execute arbitrary code via an HTTP request with a long first line that triggers a buffer overflow. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2007-4060.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Patroklos Argyroudis · pythondoslinux

https://www.exploit-db.com/exploits/10349

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in CoreHTTP web server versions <= 0.5.3.1. It sends a crafted HTTP request with an oversized payload to trigger a denial of service (DoS) condition.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: CoreHTTP web server <= 0.5.3.1

No auth needed

Prerequisites: Network access to the target server · CoreHTTP web server running on the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Patch x_refsource_misc

http://census-labs.com/media/corex.txt

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/508272/100/0/threaded

Exploit x_refsource_misc

http://census-labs.com/news/2009/12/02/corehttp-web-server/

Scores

EPSS 0.0639

EPSS Percentile 92.8%

Details

CWE

CWE-189

Status published

Products (1)

frank_yaul/corehttp 0.5.3.1

Published Dec 08, 2009

Tracked Since Feb 18, 2026