An: >> An-Http Security Vulnerabilities
AN HTTP 1.41e allows remote attackers to obtain the root web server path via an HTTP request with a long argument to a script, which leaks the path in an error message.
CVSS Score
5.0
EPSS Score
0.003
Published
2003-12-31
AN HTTP 1.41e allows remote attackers to cause a denial of service (borken pipe) via an HTTP request to aux.cgi with a long argument, possibly triggering a buffer overflow or MS-DOS device vulnerability.
CVSS Score
5.0
EPSS Score
0.024
Published
2003-12-31
Cross-site scripting vulnerability (XSS) in AN HTTP 1.41e allows remote attackers to execute arbitrary web script or HTML as other users via a URL containing the script.
CVSS Score
4.3
EPSS Score
0.004
Published
2003-12-31