Web application abuses : TinyWeb 1.9

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.11894

Category: Web application abuses

Title: TinyWeb 1.9

Summary: The remote host is running TinyWeb version 1.9 or older.

Description: Summary:
The remote host is running TinyWeb version 1.9 or older.

Vulnerability Impact:
A remote user can issue an HTTP GET request for
/cgi-bin/.%00./dddd.html and cause the server consume large amounts of CPU time (88%-92%).

Solution:
Contact the Vendor for an update.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2003-1510
BugTraq ID: 8810
http://www.securityfocus.com/bid/8810
http://www.securiteam.com/windowsntfocus/6S0052K8LQ.html
XForce ISS Database: tinyweb-httpget-dos(13402)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13402

Copyright Copyright (C) 2003 Matt North

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.11894
Category:	Web application abuses
Title:	TinyWeb 1.9
Summary:	The remote host is running TinyWeb version 1.9 or older.
Description:	Summary: The remote host is running TinyWeb version 1.9 or older. Vulnerability Impact: A remote user can issue an HTTP GET request for /cgi-bin/.%00./dddd.html and cause the server consume large amounts of CPU time (88%-92%). Solution: Contact the Vendor for an update. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2003-1510 BugTraq ID: 8810 http://www.securityfocus.com/bid/8810 http://www.securiteam.com/windowsntfocus/6S0052K8LQ.html XForce ISS Database: tinyweb-httpget-dos(13402) https://exchange.xforce.ibmcloud.com/vulnerabilities/13402
Copyright	Copyright (C) 2003 Matt North