Lucene search

[email protected]CVE-2001-0647

HistoryAug 06, 2001 - 4:00 a.m.

CVE-2001-0647

2001-08-0604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0647

orange web server

dos

http get

vulnerability

remote attack

nvd

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.01 Low

EPSS

Percentile

83.3%

JSON

Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version.

CPENameOperatorVersion
orange_software:orange_web_serverorange software orange web servereq2.1

CPE	Name	Operator	Version
orange_software:orange_web_server	orange software orange web server	eq	2.1

References

www.securityfocus.com/archive/1/165658

www.securityfocus.com/bid/2432

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.01 Low

EPSS

Percentile

83.3%

JSON

Related for CVE-2001-0647

nessus1