RSS   Vulnerabilities for 'An-http'   RSS

2003-12-31
 
CVE-2003-1271

 

 
Cross-site scripting vulnerability (XSS) in AN HTTP 1.41e allows remote attackers to execute arbitrary web script or HTML as other users via a URL containing the script.

 
 
CVE-2003-1270

 

 
AN HTTP 1.41e allows remote attackers to cause a denial of service (borken pipe) via an HTTP request to aux.cgi with a long argument, possibly triggering a buffer overflow or MS-DOS device vulnerability.

 
 
CVE-2003-1269

 

 
AN HTTP 1.41e allows remote attackers to obtain the root web server path via an HTTP request with a long argument to a script, which leaks the path in an error message.

 

 >>> Vendor: AN 2 Products
An-httpd
An-http


Copyright 2017, cxsecurity.com