VYPR
Critical severity9.8NVD Advisory· Published Dec 31, 2001· Updated Jun 16, 2026

CVE-2001-1496

CVE-2001-1496

Description

Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Affected products

2
  • Acme/Thttpd2 versions
    cpe:2.3:a:acme:thttpd:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:acme:thttpd:*:*:*:*:*:*:*:*range: >=1.95,<=2.20
    • (no CPE)range: 1.95 - 2.20

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.