CVE-2001-0777

CVE-2001-0777 affects Omnicron OmniHTTPd 2.0.8. Remote attackers can cause a denial of service via memory exhaustion by a series of requests for PHP scripts. CVSS v2: AV:N/AC:L/Au:N/C:N/I:N/A:P, base score 5.0 (Medium); network vector, no authentication, partial availability impact.

CVE-2001-0778

Affected software: OmniHTTPd (OmniPro HTTPd) up to 2.08. Vulnerability: remote attackers can disclose source code of scripting files by sending a URL with an encoded space (%20); the flaw is not present for CGI directories (cgibin/cgi-win). Impact: information disclosure of script/source files (c...