CVE-2003-1510

TinyWeb 1.9 is vulnerable to a remote denial-of-service triggered by a crafted HTTP GET request to /cgi-bin/.%00./... that consumes high CPU. Affected component is the web server’s CGI handling; root cause appears to be processing a peculiar path fragment in GET requests (".%%00."). Vendors and s...