CyberSec.Space Logo
Back to CVE Browser

CVE-2002-1870

HIGH
7.5
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile18.83th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.

Affected Platforms (CPE)

πŸ“¦
Sws

Sws Simple Web Server

= 0.0.3
πŸ“¦
Sws

Sws Simple Web Server

= 0.0.4
πŸ“¦
Sws

Sws Simple Web Server

= 0.1.0
πŸ“¦
Sws

Sws Simple Web Server

= 0.1.1

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
πŸ”— http://www.iss.net/security_center/static/10072.php
πŸ”— http://www.securityfocus.com/bid/5660
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
πŸ”— http://www.iss.net/security_center/static/10072.php
πŸ”— http://www.securityfocus.com/bid/5660

Related Vulnerabilities

CVE-2002-18645.0

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files v...

CVE-2002-18665.0

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attac...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...