Test Kennung:	1.3.6.1.4.1.25623.1.0.56897
Kategorie:	CGI abuses
Titel:	Dwarf HTTP Server Multiple Input Validation Vulnerabilities
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote system is powered by a Dwarf HTTP Server, which, according to its version number, is vulnerable to a number of vulnerabilities due to the insufficient sanitization of user supplied input. Attackers can gain access to sensitive data and perform cross site scripting attacks. Versions up to and including 1.3.2 are vulnerable. Solution: Upgrade to version 1.3.3 or later. Risk factor : High CVSS Score: 7.8
Querverweis:	BugTraq ID: 17123 Common Vulnerability Exposure (CVE) ID: CVE-2006-0819 http://www.securityfocus.com/bid/17123 Bugtraq: 20060313 Secunia Research: Dwarf HTTP Server Source Disclosure andCross-Site Scripting (Google Search) http://www.securityfocus.com/archive/1/427478/100/0/threaded http://secunia.com/secunia_research/2006-13/advisory http://www.osvdb.org/23836 http://securitytracker.com/id?1015779 http://secunia.com/advisories/18962 http://securityreason.com/securityalert/576 http://www.vupen.com/english/advisories/2006/0937 XForce ISS Database: dwarfhttp-extension-information-disclosure(25178) https://exchange.xforce.ibmcloud.com/vulnerabilities/25178 Common Vulnerability Exposure (CVE) ID: CVE-2006-0820 http://www.osvdb.org/23837 XForce ISS Database: dwarfhttp-url-xss(25179) https://exchange.xforce.ibmcloud.com/vulnerabilities/25179
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.