4 matches found
CVE-2003-1510
TinyWeb 1.9 is vulnerable to a remote denial-of-service triggered by a crafted HTTP GET request to /cgi-bin/.%00./... that consumes high CPU. Affected component is the web server’s CGI handling; root cause appears to be processing a peculiar path fragment in GET requests (".%%00."). Vendors and s...
TinyWeb < 1.93 Multiple Vulnerabilities
TinyWeb is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2003 Matt North Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.11894...
TinyWeb 1.9
The remote host is running TinyWeb version 1.9 or older. A remote user can issue an HTTP GET request for /cgi-bin/.%00./dddd.html and cause the server consume large amounts of CPU time 88%-92%. OpenVAS Vulnerability Test $Id: tinyweb.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: TinyWeb 1....
CVE-2003-1510
TinyWeb 1.9 allows remote attackers to cause a denial of service CPU consumption via a ".%00." in an HTTP GET request to the cgi-bin directory...