Lucene search

[email protected]CVE-2000-0898

HistoryJan 09, 2001 - 5:00 a.m.

CVE-2000-0898

2001-01-0905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0898

small http server

server side includes

ssi

null values

crash

vulnerability

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

64.4%

JSON

Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file.

CPENameOperatorVersion
max_feoktistov:small_http_servermax feoktistov small http servereq2.01

CPE	Name	Operator	Version
max_feoktistov:small_http_server	max feoktistov small http server	eq	2.01

References

marc.info/?l=bugtraq&m=97421834001092&w=2

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

64.4%

JSON