Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-5015

bozotic HTTP server (aka bozohttpd) before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2014-5015
  • Eterna » Bozohttpd » Version: 19990519
    cpe:2.3:a:eterna:bozohttpd:19990519
  • Eterna » Bozohttpd » Version: 20000421
    cpe:2.3:a:eterna:bozohttpd:20000421
  • Eterna » Bozohttpd » Version: 20000426
    cpe:2.3:a:eterna:bozohttpd:20000426
  • Eterna » Bozohttpd » Version: 20000427
    cpe:2.3:a:eterna:bozohttpd:20000427
  • Eterna » Bozohttpd » Version: 20000815
    cpe:2.3:a:eterna:bozohttpd:20000815
  • Eterna » Bozohttpd » Version: 20000825
    cpe:2.3:a:eterna:bozohttpd:20000825
  • Eterna » Bozohttpd » Version: 20010610
    cpe:2.3:a:eterna:bozohttpd:20010610
  • Eterna » Bozohttpd » Version: 20010812
    cpe:2.3:a:eterna:bozohttpd:20010812
  • Eterna » Bozohttpd » Version: 20010922
    cpe:2.3:a:eterna:bozohttpd:20010922
  • Eterna » Bozohttpd » Version: 20020710
    cpe:2.3:a:eterna:bozohttpd:20020710
  • Eterna » Bozohttpd » Version: 20020730
    cpe:2.3:a:eterna:bozohttpd:20020730
  • Eterna » Bozohttpd » Version: 20020803
    cpe:2.3:a:eterna:bozohttpd:20020803
  • Eterna » Bozohttpd » Version: 20020804
    cpe:2.3:a:eterna:bozohttpd:20020804
  • Eterna » Bozohttpd » Version: 20020823
    cpe:2.3:a:eterna:bozohttpd:20020823
  • Eterna » Bozohttpd » Version: 20020913
    cpe:2.3:a:eterna:bozohttpd:20020913
  • Eterna » Bozohttpd » Version: 20021106
    cpe:2.3:a:eterna:bozohttpd:20021106
  • Eterna » Bozohttpd » Version: 20030313
    cpe:2.3:a:eterna:bozohttpd:20030313
  • Eterna » Bozohttpd » Version: 20030409
    cpe:2.3:a:eterna:bozohttpd:20030409
  • Eterna » Bozohttpd » Version: 20030626
    cpe:2.3:a:eterna:bozohttpd:20030626
  • Eterna » Bozohttpd » Version: 20031005
    cpe:2.3:a:eterna:bozohttpd:20031005
  • Eterna » Bozohttpd » Version: 20040218
    cpe:2.3:a:eterna:bozohttpd:20040218
  • Eterna » Bozohttpd » Version: 20040808
    cpe:2.3:a:eterna:bozohttpd:20040808
  • Eterna » Bozohttpd » Version: 20050410
    cpe:2.3:a:eterna:bozohttpd:20050410
  • Eterna » Bozohttpd » Version: 20060517
    cpe:2.3:a:eterna:bozohttpd:20060517
  • Eterna » Bozohttpd » Version: 20060710
    cpe:2.3:a:eterna:bozohttpd:20060710
  • Eterna » Bozohttpd » Version: 20080303
    cpe:2.3:a:eterna:bozohttpd:20080303
  • Eterna » Bozohttpd » Version: 20090417
    cpe:2.3:a:eterna:bozohttpd:20090417
  • Eterna » Bozohttpd » Version: 20090522
    cpe:2.3:a:eterna:bozohttpd:20090522
  • Eterna » Bozohttpd » Version: 20100509
    cpe:2.3:a:eterna:bozohttpd:20100509
  • Eterna » Bozohttpd » Version: 20100512
    cpe:2.3:a:eterna:bozohttpd:20100512
  • Eterna » Bozohttpd » Version: 20100617
    cpe:2.3:a:eterna:bozohttpd:20100617
  • Eterna » Bozohttpd » Version: 20100621
    cpe:2.3:a:eterna:bozohttpd:20100621
  • Eterna » Bozohttpd » Version: 20100920
    cpe:2.3:a:eterna:bozohttpd:20100920
  • Eterna » Bozohttpd » Version: 20111118
    cpe:2.3:a:eterna:bozohttpd:20111118
  • Eterna » Bozohttpd » Version: 20140102
    cpe:2.3:a:eterna:bozohttpd:20140102
  • Eterna » Bozohttpd » Version: 20140201
    cpe:2.3:a:eterna:bozohttpd:20140201
  • Netbsd » Netbsd » Version: 5.1
    cpe:2.3:o:netbsd:netbsd:5.1
  • Netbsd » Netbsd » Version: 5.2
    cpe:2.3:o:netbsd:netbsd:5.2
  • Netbsd » Netbsd » Version: 6.0
    cpe:2.3:o:netbsd:netbsd:6.0
  • Netbsd » Netbsd » Version: 6.1
    cpe:2.3:o:netbsd:netbsd:6.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved