Vulnerabilities > Acme Labs

DATE CVE VULNERABILITY TITLE RISK
2006-10-31 CVE-2006-4248 Unspecified vulnerability in Acme Labs Thttpd 2.25B
thttpd on Debian GNU/Linux, and possibly other distributions, allows local users to create or touch arbitrary files via a symlink attack on the start_thttpd temporary file.
local
low complexity
acme-labs
7.2
2005-12-11 CVE-2005-4162 Cross-Site Scripting vulnerability in Acme Labs Perlcal 2.99/2.99.20/2.99.30
Cross-site scripting (XSS) vulnerability in cal_make.pl in ACME PerlCal 2.99.20 allows remote attackers to inject arbitrary web script or HTML via the p0 parameter.
network
acme-labs
4.3
2005-11-06 CVE-2005-3124 Unspecified vulnerability in Acme Labs Thttpd 2.21B/2.23B1
syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.
local
low complexity
acme-labs
2.1
2004-12-31 CVE-2004-2628 Directory Traversal vulnerability in Acme Labs Thttpd 2.0.7Beta0.4
Multiple directory traversal vulnerabilities in thttpd 2.07 beta 0.4, when running on Windows, allow remote attackers to read arbitrary files via a URL that contains (1) a hex-encoded backslash dot-dot sequence ("%5C..") or (2) a drive letter (such as "C:").
network
low complexity
acme-labs
5.0
2003-05-12 CVE-2002-1562 Unspecified vulnerability in Acme Labs Thttpd
Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files via ..
network
low complexity
acme-labs
5.0
2002-08-12 CVE-2002-0733 Cross-Site Scripting vulnerability in Acme Labs Thttpd 2.20B
Cross-site scripting vulnerability in thttpd 2.20 and earlier allows remote attackers to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 error message.
network
low complexity
acme-labs
7.5
2001-10-18 CVE-2001-0748 Improper Input Validation vulnerability in Acme Labs Acme Server 1.7
Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote attackers to read arbitrary files by prepending several / (slash) characters to the URI.
network
low complexity
acme-labs CWE-20
5.0
2001-06-27 CVE-2001-0463 Directory Traversal vulnerability in PerlCal
Directory traversal vulnerability in cal_make.pl in PerlCal allows remote attackers to read arbitrary files via a ..
network
low complexity
acme-labs
5.0
2000-12-19 CVE-2000-0900 Unspecified vulnerability in Acme Labs Thttpd
Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and earlier allows remote attackers to read arbitrary files via a "%2e%2e" string, a variation of the ..
network
low complexity
acme-labs
7.5
2000-10-20 CVE-2000-0359 Unspecified vulnerability in Acme Labs Thttpd
Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
network
low complexity
acme-labs
critical
10.0