CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2002-1497 – NullLogic Null HTTPd 0.5 - Error Page Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2002-1497
Cross-site scripting (XSS) vulnerability in Null HTTP Server 0.5.0 and earlier allows remote attackers to insert arbitrary HTML into a "404 Not Found" response. Vulnerabilidad de scripts en sitios cruzados (XSS) en Null HTTP Server 0.5.0 y anteriores permite a atacantes remotos insertar HTML arbitrario en una respuesta "404 No Encontrado". • https://www.exploit-db.com/exploits/21767 http://freshmeat.net/releases/97910 http://www.securityfocus.com/bid/5603 https://exchange.xforce.ibmcloud.com/vulnerabilities/10004 •
CVSS: 7.5EPSS: 6%CPEs: 1EXPL: 2CVE-2002-1496 – Null HTTPd 0.5 - Remote Heap Overflow
https://notcve.org/view.php?id=CVE-2002-1496
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header. Desbordamiento de búfer basado en el montón (heap) en Null HTTP Server 0.5.0 y anteriores permite a atacantes remotos ejecutar código arbitrario mediante un valor negativo en la cabecera HTTP Content-Length. • https://www.exploit-db.com/exploits/21818 http://archives.neohapsis.com/archives/bugtraq/2002-09/0284.html http://freshmeat.net/releases/97910 http://www.iss.net/security_center/static/10160.php http://www.securityfocus.com/bid/5774 •