Max Feoktistov : Security Vulnerabilities, CVEs,
SmallHTTP 1.204 through 3.00 beta 8 allows remote attackers to cause a denial of service via multiple long URL requests.
Max CVSS
5.0
EPSS Score
1.12%
Published
2001-06-29
Updated
2008-09-10
Small HTTP server 2.03 allows remote attackers to cause a denial of service via a URL that contains an MS-DOS device name such as aux.
Max CVSS
5.0
EPSS Score
1.09%
Published
2001-06-27
Updated
2017-10-10
Small HTTP Server 2.01 allows remote attackers to cause a denial of service by connecting to the server and sending out multiple GET, HEAD, or POST requests and closing the connection before the server responds to the requests.
Max CVSS
5.0
EPSS Score
0.25%
Published
2001-01-09
Updated
2016-10-18
Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file.
Max CVSS
5.0
EPSS Score
0.25%
Published
2001-01-09
Updated
2016-10-18
Small HTTP Server 2.03 and earlier allows remote attackers to cause a denial of service by repeatedly requesting a URL that references a directory that does not contain an index.html file, which consumes memory that is not released after the request is completed.
Max CVSS
5.0
EPSS Score
2.50%
Published
2001-01-09
Updated
2017-10-10
Small HTTP Server ver 3.06 contains a memory corruption bug causing a memory overflow. The overflowed buffer crashes into a Structured Exception Handler resulting in a Denial of Service.
Max CVSS
5.0
EPSS Score
2.12%
Published
2000-06-15
Updated
2021-12-22
6 vulnerabilities found