Probably overflowed a buffer or something in khttpd.

The code checks most buffer sizes, but definitely has shortcuts here and there which could be exploited (and which I'm not really going to worry about here).

Cheers