Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2013-5019

Published: 31/07/2013 Updated: 27/04/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Ultra Mini Httpd

Vulnerability Summary

Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote malicious users to execute arbitrary code via a long resource name in an HTTP request.

Vulnerable Product Search on Vulmon Subscribe to Product

vector ultra mini httpd 1.21

Exploits

Exploit DB: Ultra Mini HTTPd 1.21 - 'POST' Remote Stack Buffer Overflow (2)
#!/usr/bin/python # # Title: Mini HTTPD stack buffer overflow POST exploit # Author: TheColonial # Date: 20 Feb 2013 # Software Link: wwwvectorcojp/soft/winnt/net/se275154html # Vendor Homepage: wwwpicolixjp/ # Version: 121 # Tested on: Windows XP Professional SP3 # # Description: # This is a slightly more weaponised version of ...
Exploit DB: Ultra Mini HTTPd 1.21 - Remote Stack Buffer Overflow
# Exploit Title: Ultra Mini HTTPD stack buffer overflow # Date: 10 July 2013 # Exploit Author: superkojiman - wwwtechorganiccom # Vendor Homepage: wwwpicolixjp/ # Software Link: wwwvectorcojp/soft/winnt/net/se275154html # Version: 121 # Tested on: Windows XP Professional SP2, English # # Description: # A buffer overfl ...
Exploit DB: Ultra Mini HTTPd 1.21 - 'POST' Remote Stack Buffer Overflow (1)
# Exploit Title: Ultra Mini HTTPD stack buffer overflow POST request # Date: 16 Feb 2014 # Exploit Author: Sumit # Vendor Homepage: wwwpicolixjp/ # Software Link: wwwvectorcojp/soft/winnt/net/se275154html # Version: 121 # Tested on: Windows XP Professional SP3 # # Description: # A buffer overflow is triggered when requesting a ...
Exploit DB: Ultra Mini HTTPd - Remote Stack Buffer Overflow (Metasploit)
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = NormalRanking i ...

References

CWE-119http://www.securityfocus.com/bid/61130http://www.exploit-db.com/exploits/26739http://osvdb.org/show/osvdb/95164http://www.exploit-db.com/exploits/31814http://www.exploit-db.com/exploits/31736https://exchange.xforce.ibmcloud.com/vulnerabilities/85599https://www.exploit-db.com/exploits/44472/https://nvd.nist.govhttps://www.exploit-db.com/exploits/31814/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook