CVE-2003-0218

Published: May 12, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in PostMethod() function for Monkey HTTP Daemon (monkeyd) 0.6.1 and earlier allows remote attackers to execute arbitrary code via a POST request with a large body.

Affected (4)

Products: Monkey Project: Monkey

Monkey Project

1 product

Monkey

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Monkey Project Monkey	Up to 0.6.1
Monkey Project Monkey	Version 0.1.1
Monkey Project Monkey	Version 0.5.2
Monkey Project Monkey	Version 0.6.0

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (10)

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0029.html

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://marc.info/?l=bugtraq&m=105094204204166&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105154473526898&w=2

Source: cve@mitre.org

http://monkeyd.sourceforge.net/Changelog.txt

Source: cve@mitre.org

http://www.securityfocus.com/bid/7202

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0029.html