CVE-2003-1165 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2003-1165

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.

Affected Software

Name	Vendor	Start Version	End Version
Webweaver	Brs	1.0.4	1.0.4
Webweaver	Brs	1.0.6	1.0.6
Webweaver	Brs	1.0.3	1.0.3
Webweaver	Brs	0.50_beta	0.50_beta
Webweaver	Brs	0.60_beta	0.60_beta
Webweaver	Brs	0.52_beta	0.52_beta
Webweaver	Brs	0.63_beta	0.63_beta
Webweaver	Brs	0.51_beta	0.51_beta
Webweaver	Brs	0.62_beta	0.62_beta
Webweaver	Brs	0.61_beta	0.61_beta
Webweaver	Brs	1.0.5	1.0.5
Webweaver	Brs	0.49_beta	0.49_beta
Webweaver	Brs	1.0.2	1.0.2
Webweaver	Brs	1.0.1	1.0.1

References

http://www.securityfocus.com/archive/1/343111
http://www.securityfocus.com/bid/8947
https://exchange.xforce.ibmcloud.com/vulnerabilities/13571