CVE-2003-0016Apache Http Server vulnerability

8 documents4 sources
Severity
7.5HIGHNVD
EPSS
45.0%
top 2.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedFeb 7
Latest updateApr 29

Description

Apache before 2.0.44, when running on unpatched Windows 9x and Me operating systems, allows remote attackers to cause a denial of service or execute arbitrary code via an HTTP request containing MS-DOS device names.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDapache/http_server8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-pwp2-xgpp-8p5f: Apache before 22022-04-29
CVEList
CVE-2003-0016: Apache before 22004-09-01

💥Exploits & PoCs

5
Exploit-DB
FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service (5)1997-11-20
Exploit-DB
FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service (2)1997-11-20
Exploit-DB
FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service (3)1997-11-20
Exploit-DB
FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service (1)1997-11-20
Exploit-DB
FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service (4)1997-11-20
CVE-2003-0016 — Apache Http Server vulnerability | cvebase