CVE-2007-2367

Name of the Vulnerable Software and Affected Versions Wserve HTTP Server (whttp) version 4.6

Description The issue is related to a buffer overflow in the wserve console.exe component, which can be triggered by remote attackers sending a long directory name in the URI, resulting in a denial of service (forced application exit).

Recommendations For Wserve HTTP Server (whttp) version 4.6, consider restricting access to the wserve console.exe component until a patch is available. As a temporary workaround, avoid using long directory names in the URI to minimize the risk of exploitation.