Buffer overflow in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to execute arbitrary code via an HTTP request with a long User-Agent header.
https://exchange.xforce.ibmcloud.com/vulnerabilities/20029
http://www.security.org.sg/vuln/anhttpd142n.html