Webweaver Security Vulnerabilities and Issues — Webweaver CVE List

Lucene search

BrsWebweaver

5 matches found

CVE•added 2001/06/27 4:0 a.m.•38 views

CVE-2001-0453

Directory traversal vulnerability in BRS WebWeaver HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the (1) syshelp, (2) sysimages, or (3) scripts directories.

5CVSS7.1AI score0.00894EPSS

CVE•added 2001/06/27 4:0 a.m.•35 views

CVE-2001-0452

BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the server via a "CD *" command followed by an ls command.

5CVSS7.1AI score0.03447EPSS

CVE•added 2005/05/10 4:0 a.m.•35 views

CVE-2003-1165

Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.

5CVSS8.4AI score0.08168EPSS

CVE•added 2003/06/30 4:0 a.m.•34 views

CVE-2003-0409

Buffer overflow in BRS WebWeaver 1.04 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP (1) POST or (2) HEAD request.

10CVSS8.4AI score0.08303EPSS

CVE•added 2003/03/31 5:0 a.m.•33 views

CVE-2002-1546

BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.

7.5CVSS7.4AI score0.00428EPSS