thttpd < 2.05 If-Modified-Since Header Overflow

Critical Nessus Network Monitor Plugin ID 1522

Synopsis

The remote web server contains a buffer overflow in the portion of its code which processes the argument of the header 'If-Modified-Since'.

Description

The remote web server contains a buffer overflow in the portion of its code which processes the argument of the header 'If-Modified-Since'. By supplying a malformed argument to this header, an attacker may be able to execute arbitrary code on this host, with the privileges of the web server.

Solution

Upgrade to thttpd 2.05 or higher.

Plugin Details

Severity: Critical

ID: 1522

File Name: 1522.prm

Family: Web Servers

Published: 2004/08/18

Modified: 2016/01/19

Dependencies: 1442

Nessus ID: 10285

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:acme:thttpd

Reference Information

CVE: CVE-2000-0359

BID: 1248

OSVDB: 225