Vulnerabilities > BRS > Webweaver > 1.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1235 | Information Disclosure vulnerability in BRS WebWeaver BRW WebWeaver 1.03 allows remote attackers to obtain sensitive server environment information via a URL request for testcgi.exe, which lists the values of environment variables and the current working directory. | 5.0 |
| 2003-12-31 | CVE-2003-1165 | Remote Denial of Service vulnerability in BRS WebWeaver httpd `User-Agent` Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header. | 5.0 |
| 2003-03-31 | CVE-2002-1546 | Unspecified vulnerability in BRS Webweaver 1.0.1 BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence. | 7.5 |