Cross-site scripting vulnerability (XSS) in AN HTTP 1.41e allows remote attackers to execute arbitrary web script or HTML as other users via a URL containing the script.
Max CVSS
4.3
EPSS Score
0.40%
Published
2003-12-31
Updated
2008-09-05
AN HTTP 1.41e allows remote attackers to cause a denial of service (borken pipe) via an HTTP request to aux.cgi with a long argument, possibly triggering a buffer overflow or MS-DOS device vulnerability.
Max CVSS
5.0
EPSS Score
0.20%
Published
2003-12-31
Updated
2008-09-05
AN HTTP 1.41e allows remote attackers to obtain the root web server path via an HTTP request with a long argument to a script, which leaks the path in an error message.
Max CVSS
5.0
EPSS Score
0.22%
Published
2003-12-31
Updated
2008-09-05
3 vulnerabilities found