144 matches found
CVE-2004-2315
Mbedthis AppWeb HTTP server before 1.0.2 allows remote attackers to cause a denial of service crash via an empty OPTIONS request...
CVE-2004-2316
Mbedthis AppWeb HTTP server before 1.0.2 allows remote attackers to cause a denial of service crash via a GET request containing an MS-DOS device name such as COM1...
CVE-2004-2317
Information leak in Mbedthis AppWeb HTTP server 1.0 through 1.1.2 allows remote attackers to obtain sensitive information via a user message that is generated when Mbedthis denies access...
PT-2004-3109 · Embedthis · Mbedthis Appweb Http Server
Name of the Vulnerable Software and Affected Versions: Mbedthis AppWeb HTTP server versions prior to 1.1.3 Description: The issue allows remote attackers to bypass access restrictions via a URI with mixed case characters. Recommendations: For versions prior to 1.1.3, update to version 1.1.3 or...