Vulnerabilities > Acme > Thttpd > 2.15
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-02-06 | CVE-2017-17663 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Acme Mini Httpd and Thttpd The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution. | 7.5 |
2001-12-31 | CVE-2001-1496 | Off-by-one Error vulnerability in Acme Thttpd Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code. | 9.8 |
2001-11-13 | CVE-2001-0892 | Exposure of Resource to Wrong Sphere vulnerability in Acme Thttpd Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /. | 5.0 |