Vulnerabilities > CVE-2002-1603 - Unspecified vulnerability in Goahead Software Goahead Webserver

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

goahead-software

exploit available

NVD

Published: 2002-02-13

Updated: 2024-11-20

Summary

GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.

Vulnerable Configurations

Part	Description	Count
Application	Goahead_Software Goahead Software Goahead Webserver 2.1.1 Goahead Software Goahead Webserver 2.0 Goahead Software Goahead Webserver 2.1.5 Goahead Software Goahead Webserver 2.1.2 Goahead Software Goahead Webserver 2.1.4 Goahead Software Goahead Webserver 2.1.7 Goahead Software Goahead Webserver 2.1 Goahead Software Goahead Webserver 2.1.3 Goahead Software Goahead Webserver 2.1.6	9

Exploit-Db

description	GoAhead Webserver 2.1.x ASP Script File Source Code Disclosure Vulnerability. CVE-2002-1603. Remote exploit for windows platform
id	EDB-ID:23446
last seen	2016-02-02
modified	2002-12-17
published	2002-12-17
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/23446/
title	GoAhead Webserver 2.1.x ASP Script File Source Code Disclosure Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References