CVE-2009-3711

httpdx 1.4 - Stack-based Buffer Overflow via Long HTTP GET Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2009-3711. PoCs published by Metasploit, Pankaj Kohli, including Metasploit module exploits/windows/http/httpdx_handlepeer.

AI-analyzed exploit summary This is a Metasploit module exploiting a stack-based buffer overflow in HTTPDX 1.4 via an overly long HTTP request to the 'h_handlepeer()' function. It achieves remote code execution by overwriting the SEH record and jumping to shellcode.

Description

Stack-based buffer overflow in the h_handlepeer function in http.cpp in httpdx 1.4, and possibly 1.4.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16799

This is a Metasploit module exploiting a stack-based buffer overflow in HTTPDX 1.4 via an overly long HTTP request to the 'h_handlepeer()' function. It achieves remote code execution by overwriting the SEH record and jumping to shellcode.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HTTPDX 1.4
No auth needed
Prerequisites: Network access to the HTTPDX server · HTTPDX 1.4 running on Windows XP SP3 or Windows 2003 SP2
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Pankaj Kohli · textremotewindows
https://www.exploit-db.com/exploits/10053

This exploit targets a buffer overflow vulnerability in httpdx web server 1.4 via a long GET request. It includes shellcode for a port-binding shell on Windows XP SP3 and demonstrates remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: httpdx web server 1.4
No auth needed
Prerequisites: Network access to the target server · Target running httpdx 1.4 on Windows XP SP3
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/httpdx_handlepeer.rb

This Metasploit module exploits a stack-based buffer overflow in HTTPDX 1.4 via an overly long HTTP request to the 'h_handlepeer()' function, allowing arbitrary code execution. It uses SEH overwrites and a jump-back technique to trigger the payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HTTPDX 1.4
No auth needed
Prerequisites: Network access to HTTPDX server · HTTPDX 1.4 running on Windows XP SP3 or Windows 2003 SP2
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/2874
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/53700
Exploit mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=125544914512291&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/58714
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/507042/100/0/threaded
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/36991
Exploit, URL Repurposed x_refsource_misc
http://www.pank4j.com/exploits/httpdxb0f.php
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/507073/100/0/threaded

Scores

EPSS 0.6391
EPSS Percentile 99.1%

Details

CWE
CWE-119
Status published
Products (2)
jasper/httpdx 1.4
jasper/httpdx 1.4.3
Published Oct 16, 2009
Tracked Since Feb 18, 2026