Summary
According to its version number, the remote version of Zervit HTTP server is prone to a remote buffer-overflow vulnerability and to a directory-traversal vulnerability.
An attacker can exploit the remote buffer-overflow issue to execute arbitrary code within the context of the affected application.
Failed exploit attempts will result in a denial-of-service condition.
Exploiting the directory-traversal issue will allow an attacker to view arbitrary local files within the context of the webserver.
Information harvested may aid in launching further attacks.
Zervit 0.2, 0.3 and 0.4 are vulnerable
other versions may also be
affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-1353 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities
- Apache HTTP Server mod_proxy_ajp Process Timeout DoS Vulnerability (Windows)
- Codebrws.asp Source Disclosure Vulnerability
- Apache Traffic Server HTTP TRACE Request Remote DoS Vulnerability
- IBM WebSphere Application Server Administration Directory Traversal Vulnerability