Lucene search
MitreCVELIST:CVE-2005-0453HistoryFeb 16, 2005 - 5:00 a.m.
CVE-2005-0453
2005-02-1605:00:00
mitre
www.cve.org
The buffer_urldecode function in Lighttpd 1.3.7 and earlier does not properly handle control characters, which allows remote attackers to obtain the source code for CGI and FastCGI scripts via a URL with a %00 (null) character after the file extension.
Related
openvas
openvas
FreeBSD Ports: lighttpd
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200502-21 (lighttpd)
2008-09-24 00:00:00
FreeBSD Ports: lighttpd
2008-09-04 00:00:00
freebsd
freebsd
lighttpd -- script source disclosure vulnerability
2005-02-12 00:00:00
nessus
nessus
GLSA-200502-21 : lighttpd: Script source disclosure
2005-02-16 00:00:00
FreeBSD : lighttpd -- script source disclosure vulnerability (bdad9ada-8a52-11d9-9e53-000a95bc6fae)
2005-07-13 00:00:00
lighttpd < 1.3.8 Null Byte Request CGI Script Source Code Disclosure
2005-02-16 00:00:00
nvd
nvd
CVE-2005-0453
2005-02-16 05:00:00
cve
cve
CVE-2005-0453
2005-02-16 05:00:00
gentoo
gentoo
lighttpd: Script source disclosure
2005-02-15 00:00:00