- EPSS 4.82%
- Veröffentlicht 17.02.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possib...
- EPSS 16.12%
- Veröffentlicht 16.06.2003 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GET request with a large number of / characters.
- EPSS 0.68%
- Veröffentlicht 26.07.2002 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" (wildcard or asterisk) character.
CVE-2002-0142
- EPSS 5.68%
- Veröffentlicht 25.03.2002 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.
- EPSS 9.57%
- Veröffentlicht 03.05.2001 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL.
- EPSS 0.62%
- Veröffentlicht 03.05.2001 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of the server via a URL that requests a non-existent file.