Abyss Web Server@1.0.3 Security Vulnerabilities and Issues — Abyss Web Server@1.0.3 CVE List

Lucene search

Aprelium TechnologiesAbyss Web Server1.0.3

3 matches found

CVE•added 2002/10/04 4:0 a.m.•126 views

CVE-2002-1078

Abyss Web Server 1.0.3 allows remote attackers to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.

5CVSS7AI score0.00834EPSS

CVE•added 2002/10/04 4:0 a.m.•39 views

CVE-2002-1080

The Administration console for Abyss Web Server 1.0.3 before Patch 2 allows remote attackers to gain privileges and modify server configuration via direct requests to CHL files such as (1) srvstatus.chl, (2) consport.chl, (3) general.chl, (4) srvparam.chl, and (5) advanced.chl.

7.5CVSS7.4AI score0.01048EPSS

CVE•added 2003/04/02 5:0 a.m.•39 views

CVE-2002-1081

The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.

5CVSS7AI score0.00612EPSS