Miniweb Http Server Security Vulnerabilities and Issues — Miniweb Http Server CVE List

Lucene search

Miniweb Http ServerMiniweb Http Server

3 matches found

CVE•added 2008/01/17 10:0 p.m.•32 views

CVE-2008-0337

Heap-based buffer overflow in the _mwProcessReadSocket function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to execute arbitrary code via a long URI.

7.5CVSS8AI score0.13467EPSS

CVE•added 2008/01/17 10:0 p.m.•28 views

CVE-2008-0338

Directory traversal vulnerability in the mwGetLocalFileName function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to read arbitrary files and list arbitrary directories via a (1) .%2e (partially encoded dot dot) or (2) %2e%2e (encoded dot dot) in the URI.

5CVSS6.7AI score0.05766EPSS

CVE•added 2007/06/11 10:30 p.m.•27 views

CVE-2007-3159

http.c in MiniWeb Http Server 0.8.x allows remote attackers to cause a denial of service (application crash) via a negative value in the Content-Length HTTP header.

5CVSS6.6AI score0.04616EPSS