CVE-2001-0820
published 2001-12-06CVE-2001-0820: Buffer overflows in GazTek ghttpd 1.4 allows a remote attacker to execute arbitrary code via long arguments that are passed to (1) the Log function in util.c…
PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
12.70%
95.8th percentile
Buffer overflows in GazTek ghttpd 1.4 allows a remote attacker to execute arbitrary code via long arguments that are passed to (1) the Log function in util.c, or (2) serveconnection in protocol.c.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gaztek | ghttp | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ghttpd 1.4.x - 'Log()' Remote Buffer Overflow
exploitdb·2002-10-07
CVE-2001-0820 ghttpd 1.4.x - 'Log()' Remote Buffer Overflow
ghttpd 1.4.x - 'Log()' Remote Buffer Overflow
---
// source: https://www.securityfocus.com/bid/5960/info
A buffer overflow has been reported in ghttpd which will allow arbitrary code to be executed with the privileges of the webserver.
The overflow occurs when the argument to a 'GET' request is of excessive length. It is a stack-based overflow which may allow for attackers to overwrite stack variables and execute arbitrary code on the underlying host.
The webserver minimizes the risk of root compromise by dropping privileges after it has bound to port 80. This vulnerability is still a serious threat however, as remote attackers can gain access.
/* PRPghttpd.c
This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public License
as
Exploit-DB
ghttpd 1.4 - Daemon Buffer Overflow
exploitdb·2001-06-17
CVE-2002-1904 ghttpd 1.4 - Daemon Buffer Overflow
ghttpd 1.4 - Daemon Buffer Overflow
---
// source: https://www.securityfocus.com/bid/2879/info
ghttpd is a freely available, open source web server for Unix systems. ghttpd supports CGI and is easy to configure and use.
A buffer overflow is known to exist in ghttp which will allow arbitrary code to be executed with the privileges of the webserver.
Proof-of-concept code has demonstrated that this vulnerability can be exploited by remote attackers.
/*
* GazTek HTTP Daemon v1.4 (ghttpd) Linux x86 remote exploit
* by qitest1 - 17/06/2001
*
* Root privileges are dropped out by the daemon, so a shell owned by
* nobody will be executed.
*
* 0x69.. =)
*/
#include
#include
#include
#include
#include
#define RETPOS 161
struct targ
{
int def;
char *descr;
unsigned long int retaddr;
};
struc
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=99279182704674&w=2http://marc.info/?l=bugtraq&m=99406263214417&w=2http://www.securityfocus.com/bid/2879http://www.securityfocus.com/bid/2965https://exchange.xforce.ibmcloud.com/vulnerabilities/6702http://marc.info/?l=bugtraq&m=99279182704674&w=2http://marc.info/?l=bugtraq&m=99406263214417&w=2http://www.securityfocus.com/bid/2879http://www.securityfocus.com/bid/2965https://exchange.xforce.ibmcloud.com/vulnerabilities/6702
2001-12-06
Published