Vulnerabilities > BRS > Webweaver > 1.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1235 | Information Disclosure vulnerability in BRS WebWeaver BRW WebWeaver 1.03 allows remote attackers to obtain sensitive server environment information via a URL request for testcgi.exe, which lists the values of environment variables and the current working directory. | 5.0 |
2003-12-31 | CVE-2003-1165 | Remote Denial of Service vulnerability in BRS WebWeaver httpd `User-Agent` Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header. | 5.0 |