| |
Vulnerability CVE-2000-0898
Published: 2001-01-09 Modified: 2012-02-12
| Description: |
Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file. |
CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
5/10 |
2.9/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
None |
None |
Partial |
References: |
http://marc.info/?l=bugtraq&m=97421834001092&w=2
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
