CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1870

HIGH
7.5
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile18.83th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.

Affected Platforms (CPE)

📦
Sws

Sws Simple Web Server

= 0.0.3
📦
Sws

Sws Simple Web Server

= 0.0.4
📦
Sws

Sws Simple Web Server

= 0.1.0
📦
Sws

Sws Simple Web Server

= 0.1.1

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10072.php
🔗 http://www.securityfocus.com/bid/5660
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10072.php
🔗 http://www.securityfocus.com/bid/5660

関連する脆弱性情報

CVE-2002-18645.0

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files v...

CVE-2002-18665.0

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attac...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...