Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Thttpd | Acme_labs | 1.90a (including) | 1.90a (including) |
| Thttpd | Acme_labs | 1.95 (including) | 1.95 (including) |
| Thttpd | Acme_labs | 2.0 (including) | 2.0 (including) |
| Thttpd | Acme_labs | 2.0.1 (including) | 2.0.1 (including) |
| Thttpd | Acme_labs | 2.0.2 (including) | 2.0.2 (including) |
| Thttpd | Acme_labs | 2.0.3 (including) | 2.0.3 (including) |
| Thttpd | Acme_labs | 2.0.4 (including) | 2.0.4 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/1626.html
- http://www.novell.com/linux/security/advisories/suse_security_announce_30.html
- http://www.securityfocus.com/bid/1248
- http://archives.neohapsis.com/archives/bugtraq/1626.html
- http://www.novell.com/linux/security/advisories/suse_security_announce_30.html
- http://www.securityfocus.com/bid/1248