Computer Security
[EN] securityvulns.ru no-pyccku


GoAhead Web Server security vulnerabilities
Published:12.05.2015
Source:
SecurityVulns ID:14483
Type:remote
Threat Level:
6/10
Description:Directory traversal, buffer overflow.
Affected:EMBEDTHIS : GoAhead 3.4
CVE:CVE-2014-9707 (EmbedThis GoAhead 3.0.0 through 3.4.1 does not properly handle path segments starting with a . (dot), which allows remote attackers to conduct directory traversal attacks, cause a denial of service (heap-based buffer overflow and crash), or possibly execute arbitrary code via a crafted URI.)
Original documentdocumentMatthew Daley, Advisory: CVE-2014-9707: GoAhead Web Server 3.0.0 - 3.4.1 (12.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod