Savant Webserver Security Vulnerabilities
6.9AI Score
0.003EPSS
Savant web server allows remote attackers to read source code of CGI scripts via a GET request that does not include the HTTP version number.
6.8AI Score
0.005EPSS
Savant web server allows remote attackers to execute arbitrary commands via a long GET request.
7.6AI Score
0.054EPSS
Buffer overflow in Savant 3.0 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Host HTTP header.
8.1AI Score
0.002EPSS
Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . (dot) characters.
7.2AI Score
0.013EPSS
Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value.
6.6AI Score
0.131EPSS
Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filename.
7.5AI Score
0.052EPSS
cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.
6.6AI Score
0.007EPSS
Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.
7.9AI Score
0.144EPSS
Savant Web Server stores user credentials in plaintext in the Savant\Users registry key, which allows local users to gain privileges.
6.9AI Score
0.0004EPSS