CVE-2006-5216 - Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to e

CVE-2006-5216

Summary

Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.

References

Vulnerable Configurations

cpe:2.3:a:sergey_lyubka:simple_httpd:1.34:*:*:*:*:*:*:*
cpe:2.3:a:sergey_lyubka:simple_httpd:1.34:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	20393
exploit-db	2482
fulldisc	20061018 shttpd long get request vuln ( retro )
misc	http://exploitlabs.com/files/advisories/EXPL-A-2006-005-shttpd.txt
sectrack	1017088
secunia	22294
vupen	ADV-2006-3939
xf	simplehttpd-post-bo(29368)

Last major update

19-10-2017 - 01:29

Published

10-10-2006 - 04:06

Last modified

19-10-2017 - 01:29