Vulnerabilities > Acme Labs > Thttpd
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-10-31 | CVE-2006-4248 | Unspecified vulnerability in Acme Labs Thttpd 2.25B thttpd on Debian GNU/Linux, and possibly other distributions, allows local users to create or touch arbitrary files via a symlink attack on the start_thttpd temporary file. | 7.2 |
| 2005-11-06 | CVE-2005-3124 | Unspecified vulnerability in Acme Labs Thttpd 2.21B/2.23B1 syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file. | 2.1 |
| 2004-12-31 | CVE-2004-2628 | Directory Traversal vulnerability in Acme Labs Thttpd 2.0.7Beta0.4 Multiple directory traversal vulnerabilities in thttpd 2.07 beta 0.4, when running on Windows, allow remote attackers to read arbitrary files via a URL that contains (1) a hex-encoded backslash dot-dot sequence ("%5C..") or (2) a drive letter (such as "C:"). | 5.0 |
| 2003-05-12 | CVE-2002-1562 | Unspecified vulnerability in Acme Labs Thttpd Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files via .. | 5.0 |
| 2002-08-12 | CVE-2002-0733 | Cross-Site Scripting vulnerability in Acme Labs Thttpd 2.20B Cross-site scripting vulnerability in thttpd 2.20 and earlier allows remote attackers to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 error message. | 7.5 |
| 2000-12-19 | CVE-2000-0900 | Unspecified vulnerability in Acme Labs Thttpd Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and earlier allows remote attackers to read arbitrary files via a "%2e%2e" string, a variation of the .. | 7.5 |
| 2000-10-20 | CVE-2000-0359 | Unspecified vulnerability in Acme Labs Thttpd Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header. | 10.0 |