Webserver4everyone < 1.30 URI Overflow

medium Nessus Network Monitor Plugin ID 1448

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote web server (WebServer4Everyone) is vulnerable to various buffer overflows which may allow an attacker to execute arbitrary commands on this host, with the privileges of the web daemon (typically, SYSTEM)

Solution

Upgrade to version 1.30

See Also

http://archives.neohapsis.com/archives/bugtraq/2002-10/0332.html

Plugin Details

Severity: Medium

ID: 1448

Family: Web Servers

Published: 8/20/2004

Updated: 3/6/2019

Nessus ID: 11167

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:radiobird_software:webserver_4_all

Reference Information

CVE: CVE-2002-1212

BID: 5967