Vulnerabilities > CVE-2004-1514 - Remote vulnerability in Soft3304 04Webserver 1.42

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
soft3304
nessus

Summary

04WebServer 1.42 allows remote attackers to cause a denial of service (fail to restart properly) via an HTTP request for an MS-DOS device name such as COM2.

Vulnerable Configurations

Part Description Count
Application
Soft3304
1

Nessus

NASL familyWeb Servers
NASL id04WEBSERVER.NASL
descriptionThe remote host is running a version of 04WebServer which is older than version 1.5. Such versions are affected by multiple vulnerabilities : - A cross-site scripting vulnerability in the Response_default.html script which could allow an attacker to execute arbitrary code in the user
last seen2020-06-01
modified2020-06-02
plugin id15713
published2004-11-13
reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/15713
title04WebServer Multiple Vulnerabilities (XSS, DoS, more)