Brs: >> Webweaver >> 1.0.1 Security Vulnerabilities
Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header.
CVSS Score
5.0
EPSS Score
0.082
Published
2003-12-31
BRW WebWeaver 1.03 allows remote attackers to obtain sensitive server environment information via a URL request for testcgi.exe, which lists the values of environment variables and the current working directory.
CVSS Score
5.0
EPSS Score
0.004
Published
2003-12-31
BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.
CVSS Score
7.5
EPSS Score
0.004
Published
2003-03-31