Abyss Web Server Security Vulnerabilities and Issues — Abyss Web Server CVE List

Lucene search

Aprelium TechnologiesAbyss Web Server

4 matches found

CVE•added 2002/10/04 4:0 a.m.•128 views

CVE-2002-1078

Abyss Web Server 1.0.3 allows remote attackers to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.

5CVSS7AI score0.00834EPSS

CVE•added 2003/04/02 5:0 a.m.•39 views

CVE-2002-1081

The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.

5CVSS7AI score0.00612EPSS

CVE•added 2003/04/02 5:0 a.m.•34 views

CVE-2002-0543

Directory traversal vulnerability in Aprelium Abyss Web Server (abyssws) before 1.0.0.2 allows remote attackers to read files outside the web root, including the abyss.conf file, via URL-encoded .. (dot dot) sequences in the HTTP request.

5CVSS7AI score0.10261EPSS

CVE•added 2003/04/02 5:0 a.m.•27 views

CVE-2002-1079

Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request.

5CVSS7.1AI score0.10178EPSS