Thttpd Http Server Security Vulnerabilities and Issues — Thttpd Http Server CVE List

Lucene search

ThttpdThttpd Http Server

4 matches found

cve•added 2010/01/13 8:30 p.m.•123 views

CVE-2009-4491

thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

9.8CVSS7.8AI score0.02714EPSS

cve•added 2019/11/25 3:15 p.m.•50 views

CVE-2012-5640

thttpd has a local DoS vulnerability via specially-crafted .htpasswd files

5.5CVSS5.5AI score0.00078EPSS

cve•added 2001/09/12 4:0 a.m.•37 views

CVE-1999-1457

Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.

7.5CVSS8.2AI score0.01208EPSS

cve•added 2002/03/09 5:0 a.m.•34 views

CVE-1999-1456

thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename.

5CVSS6.7AI score0.01083EPSS