Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2002-1865

Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header.

  • Published: Dec 31, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1865
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
linksys / befw11s4 1.37.9b 1.37.9b.x
linksys / befw11s4 1.40.3 1.40.3.x
d-link / di-804 4.68 4.68.x
linksys / wap11 1.4 1.4.x
d-link / dl-704 2.56_b6 2.56_b6.x
d-link / dl-704 2.56_b5 2.56_b5.x
linksys / befw11s4 1.37.2 1.37.2.x
linksys / befw11s4 1.4.2.7 1.4.2.7.x
linksys / befw11s4 1.42.7 1.42.7.x
linksys / wap11 1.3 1.3.x
linksys / befw11s4 1.37.2b 1.37.2b.x