TinyWeb 1.9 Network Vulnerability

Summary

The remote host is running TinyWeb version 1.9 or older. A remote user can issue an HTTP GET request for /cgi-bin/.%00./dddd.html and cause the server consume large amounts of CPU time (88%-92%).

Solution

contact vendor http://www.ritlabs.com

Severity

Classification

CVE CVE-2003-1510

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
AjaxPortal 'di.php' File Inclusion Vulnerability
ApPHP MicroBlog Remote Code Execution Vulnerability
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability

Take action and discover your vulnerabilities