Vulnerabilities > CVE-2004-2100 - Security Bypass vulnerability in Geohttpserver

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

geovision

NVD

Published: 2004-12-31

Updated: 2016-10-18

Summary

GeoHttpServer, when configured to authenticate users, allows remote attackers to bypass authentication and access unauthorized files via a URL that contains %0a%0a (encoded newlines).

Vulnerable Configurations

Part	Description	Count
Application	Geovision Geovision Geohttpserver *	1

References

http://marc.info/?l=bugtraq&m=107480261825214&w=2