Vulnerabilities > CVE-2002-1081 - Information Disclosure vulnerability in Abyss Web Server Malicious HTTP Request
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |