Summary
uHTTP Server is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.
Exploiting this issue will allow an attacker to view arbitrary local files and directories within the context of the webserver. Information harvested may aid in launching further attacks.
uHTTP Server 0.1.0-alpha is vulnerable
other versions may also
be affected.
References
Updated on 2017-03-28
Severity
Classification
-
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- IBM WebSphere Application Server (WAS) Multiple Vulnerabilities 01 - March 2011
- Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
- IBM WebSphere Application Server (WAS) Security Bypass Vulnerability - March 2011
- Apache Traffic Server HTTP TRACE Request Remote DoS Vulnerability
- Apache Tomcat Multiple Security Bypass Vulnerabilities (Windows)