CVE-2001-1496

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions thttpd versions 1.95 through 2.20

Description The issue is an off-by-one buffer overflow in Basic Authentication, allowing remote attackers to cause a denial of service and possibly execute arbitrary code.

Recommendations For versions 1.95 through 2.20, consider disabling Basic Authentication until a patch is available to prevent potential exploitation. Restrict access to the authentication module to minimize the risk of denial of service or arbitrary code execution.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

CVE-2001-1496

Affected Products

Thttpd

CVE-2001-1496

Weakness Enumeration

Related Identifiers

Affected Products

References · 7