Vulnerabilities > Goahead > Goahead Webserver > 2.1.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-06 | CVE-2003-1569 | Improper Input Validation vulnerability in Goahead Webserver GoAhead WebServer before 2.1.5 on Windows 95, 98, and ME allows remote attackers to cause a denial of service (daemon crash) via an HTTP request with a (1) con, (2) nul, (3) clock$, or (4) config$ device name in a path component, different vectors than CVE-2001-0385. | 5.0 |
| 2009-02-06 | CVE-2003-1568 | Improper Input Validation vulnerability in multiple products GoAhead WebServer before 2.1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an invalid URL, related to the websSafeUrl function. | 5.0 |
| 2009-02-06 | CVE-2002-2431 | Unspecified vulnerability in Goahead Webserver Unspecified vulnerability in GoAhead WebServer before 2.1.4 allows remote attackers to cause "incorrect behavior" via unknown "malicious code," related to incorrect use of the socketInputBuffered function by sockGen.c. | 7.5 |
| 2009-02-06 | CVE-2002-2429 | Improper Input Validation vulnerability in Goahead Webserver webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request that contains a negative integer in the Content-Length header. | 5.0 |
| 2009-02-06 | CVE-2002-2428 | Improper Input Validation vulnerability in Goahead Webserver webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data. | 5.0 |