UHTTP Server GET Request Directory Traversal Vulnerability Network Vulnerability

Summary

uHTTP Server is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files and directories within the context of the webserver. Information harvested may aid in launching further attacks. uHTTP Server 0.1.0-alpha is vulnerable other versions may also be affected.

References

http://uhttps.sourceforge.net
http://www.securityfocus.com/bid/38986

Updated on 2017-03-28

Severity

Classification

CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

IBM WebSphere Application Server (WAS) Multiple Vulnerabilities 01 - March 2011
Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
IBM WebSphere Application Server (WAS) Security Bypass Vulnerability - March 2011
Apache Traffic Server HTTP TRACE Request Remote DoS Vulnerability
Apache Tomcat Multiple Security Bypass Vulnerabilities (Windows)

uHTTP Server GET Request Directory Traversal Vulnerability

Take action and discover your vulnerabilities