Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-1930

CVE-2002-1930

Description

Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.

Affected products

6

An/An Httpd6 versions
cpe:2.3:a:an:an-httpd:1.38:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:an:an-httpd:1.38:*:*:*:*:*:*:*
- cpe:2.3:a:an:an-httpd:1.39:*:*:*:*:*:*:*
- cpe:2.3:a:an:an-httpd:1.40:*:*:*:*:*:*:*
- cpe:2.3:a:an:an-httpd:1.41:*:*:*:*:*:*:*
- cpe:2.3:a:an:an-httpd:1.41b:*:*:*:*:*:*:*
- cpe:2.3:a:an:an-httpd:1.41c:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

www.iss.net/security_center/static/10410.phpnvdPatch
archives.neohapsis.com/archives/vulnwatch/2002-q4/0032.htmlnvdExploit
www.securityfocus.com/bid/6012nvdExploitPatch

News mentions

0

No linked articles in our index yet.