TinyWeb 1.9 Network Vulnerability

Summary

The remote host is running TinyWeb version 1.9 or older. A remote user can issue an HTTP GET request for /cgi-bin/.%00./dddd.html and cause the server consume large amounts of CPU time (88%-92%).

Solution

contact vendor http://www.ritlabs.com

Severity

Classification

CVE CVE-2003-1510

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Allegro RomPager `Misfortune Cookie` Vulnerability
Adobe ColdFusion Multiple Vulnerabilities-02 May-2014
A-A-S Application Access Server Multiple Vulnerabilities
Apache Tomcat /servlet Cross Site Scripting
ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

Take action and discover your vulnerabilities