Vulnerabilities > CVE-2003-1165 - Remote Denial of Service vulnerability in BRS WebWeaver httpd `User-Agent`

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

brs

exploit available

NVD

Published: 2003-12-31

Updated: 2017-07-11

Summary

Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.

Vulnerable Configurations

Part	Description	Count
Application	Brs BRS Webweaver 0.49_Beta BRS Webweaver 0.50_Beta BRS Webweaver 0.51_Beta BRS Webweaver 0.52_Beta BRS Webweaver 0.60_Beta BRS Webweaver 0.61_Beta BRS Webweaver 0.62_Beta BRS Webweaver 0.63_Beta BRS Webweaver 1.0.1 BRS Webweaver 1.0.2 BRS Webweaver 1.0.3 BRS Webweaver 1.0.4 BRS Webweaver 1.0.5 BRS Webweaver 1.0.6	14

Exploit-Db

description	BRS WebWeaver 1.06 httpd `User-Agent` Remote Denial of Service Vulnerability. CVE-2003-1165. Dos exploits for multiple platform
id	EDB-ID:23325
last seen	2016-02-02
modified	2003-11-01
published	2003-11-01
reporter	D4rkGr3y
source	https://www.exploit-db.com/download/23325/
title	BRS WebWeaver 1.06 httpd `User-Agent` Remote Denial of Service Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References