Thttpd » Thttpd Http Server : Security Vulnerabilities, CVEs,
Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.
Max CVSS
7.5
EPSS Score
0.38%
Published
1999-11-16
Updated
2008-09-10
thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename.
Max CVSS
5.0
EPSS Score
0.50%
Published
1999-12-31
Updated
2017-10-10
2 vulnerabilities found