CVE-2004-1990

2005-05-1004:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

JSON

Aldo’s Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a malformed request.

References

marc.info/?l=bugtraq&m=108360629031227&w=2

secunia.com/advisories/11542

www.oliverkarow.de/research/AldosWebserverMultipleVulns.txt

www.osvdb.org/5880

www.securityfocus.com/bid/10262

exchange.xforce.ibmcloud.com/vulnerabilities/16047