CVE-2000-0359

Description

Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.

Affected products

• acme_labs / thttpd1.90a – 1.90a
• acme_labs / thttpd1.95 – 1.95
• acme_labs / thttpd2.0 – 2.0
• acme_labs / thttpd2.0.1 – 2.0.1
• acme_labs / thttpd2.0.2 – 2.0.2
• acme_labs / thttpd2.0.3 – 2.0.3
• acme_labs / thttpd2.0.4 – 2.0.4

References

• MISChttp://www.securityfocus.com/bid/1248
• VENDOR_ADVISORYhttp://www.novell.com/linux/security/advisories/suse_security_announce_30.html
• MISChttp://archives.neohapsis.com/archives/bugtraq/1626.html