3 matches found
CVE-2002-0291
Dino's Webserver 1.2 is affected by CVE-2002-0291. The vulnerability allows remote attackers to cause a denial of service (CPU consumption) and potentially execute arbitrary code by sending several large HTTP requests in a short period. The commonly cited impact is partial availability compromise...
CVE-2002-1133
CVE-2002-1133 concerns Dino’s WebServer 2.1, where an attacker can perform a directory traversal via URL-encoded sequences (/%2f or %5c) to read arbitrary files. The root cause is improper handling of encoded path separators, enabling navigation to directories on the server and file disclosure. T...
CVE-2002-0111
Dino’s Webserver (versions 1.2 and earlier) is affected by a directory traversal vulnerability. A remote attacker can induce traversal with a dot-dot sequence (and in some references via URL-encoded variants) to read arbitrary files or execute commands on the server. The iDEFENSE advisory explici...