5

CVE-2002-1865

Exploit

EPSS 5.7%
Published 31.12.2002 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

D-link ≫ Di-804 Version4.68

D-link ≫ Dl-704 Version2.56_b5

D-link ≫ Dl-704 Version2.56_b6

Linksys ≫ Befw11s4 Version1.4.2.7

Linksys ≫ Befw11s4 Version1.37.2

Linksys ≫ Befw11s4 Version1.37.2b

Linksys ≫ Befw11s4 Version1.37.9b

Linksys ≫ Befw11s4 Version1.40.3

Linksys ≫ Befw11s4 Version1.42.7

Linksys ≫ Wap11 Version1.3

Linksys ≫ Wap11 Version1.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	5.7%	0.9

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0052.html

Vendor Advisory

Exploit

http://www.iss.net/security_center/static/10537.php

http://www.securityfocus.com/bid/6090

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2002-1865

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-1865

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-1865

EUVD