Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2006-0814
HistoryMar 06, 2006 - 9:02 p.m.

Code injection

2006-03-0621:02:00
PRIOn knowledge base
www.prio-n.com
2

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.01 Low

EPSS

Percentile

83.5%

JSON

response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing (1) “.” (dot) and (2) space characters, which are ignored by Windows, as demonstrated by PHP files.

Related

securityvulns 1
cve 1
d2 1
nessus 1
securityvulns
securityvulns
Secunia Research: Lighttpd Script Source Disclosure Vulnerability
2006-03-01 00:00:00
cve
cve
CVE-2006-0814
2006-03-06 21:02:00
d2
d2
DSquare Exploit Pack: D2SEC_LIGHTTPD2
2006-03-06 21:02:00
nessus
nessus
lighttpd on Windows < 1.4.10a Crafted Filename Request Script Source Disclosure
2006-03-27 00:00:00

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.01 Low

EPSS

Percentile

83.5%

JSON
Related for PRION:CVE-2006-0814
securityvulns1cve1d21nessus1