Vulnerability Details CVE-2007-2415
Pi3Web Web Server 2.0.3 PL1 allows remote attackers to cause a denial of service (application exit) via a long URI. NOTE: this issue was originally reported as a crash, but the vendor states that the impact is a "clean" exit in which "the server I/O loop finishes and the process exits normally."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/25009
- http://sourceforge.net/forum/forum.php?thread_id=1725156&forum_id=131392
- http://www.securityfocus.com/bid/23713
- http://www.vupen.com/english/advisories/2007/1579
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33967
- http://secunia.com/advisories/25009
- http://sourceforge.net/forum/forum.php?thread_id=1725156&forum_id=131392
- http://www.securityfocus.com/bid/23713
- http://www.vupen.com/english/advisories/2007/1579
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33967
Products affected by CVE-2007-2415
-
cpe:2.3:a:pi3web:pi3web_web_server:2.0.3_pl1