Lucene search

Savant Webserver Security Vulnerabilities - February

cve

CVE-2002-1828

Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value.

6.6AI Score

0.032EPSS

2005-06-28 04:00 AM

cve

CVE-2002-2145

Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filename.

7.5AI Score

0.026EPSS

2005-11-16 09:17 PM

cve

CVE-2002-2146

cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.

6.6AI Score

0.013EPSS

2005-11-16 09:17 PM

cve

CVE-2005-0338

Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.

7.9AI Score

0.144EPSS

2005-05-02 04:00 AM

cve

CVE-2005-2859

Savant Web Server stores user credentials in plaintext in the Savant\Users registry key, which allows local users to gain privileges.

6.9AI Score

0.0004EPSS

2005-09-08 10:03 AM