CyberSec.Space Logo
Back to CVE Browser

CVE-2002-1866

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0760%
EPSS Percentile7.99th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via multiple requests for pages that do not exist.

Affected Platforms (CPE)

πŸ“¦
Sws

Sws Simple Web Server

= 0.0.3
πŸ“¦
Sws

Sws Simple Web Server

= 0.0.4
πŸ“¦
Sws

Sws Simple Web Server

= 0.1.0
πŸ“¦
Sws

Sws Simple Web Server

= 0.1.1

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
πŸ”— http://www.iss.net/security_center/static/10071.php
πŸ”— http://www.securityfocus.com/bid/5659
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
πŸ”— http://www.iss.net/security_center/static/10071.php
πŸ”— http://www.securityfocus.com/bid/5659

Related Vulnerabilities

CVE-2002-18707.5

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote att...

CVE-2002-18645.0

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files v...

CVE-2002-039410.0

Red-M 1050 (Bluetooth Access Point) uses case insensitive passwords, which makes it easier for attackers to conduct a brute force ...

CVE-2002-039510.0

The TFTP server for Red-M 1050 (Bluetooth Access Point) can not be disabled and makes it easier for remote attackers to crack the ...