ID de Prueba:	1.3.6.1.4.1.25623.1.0.56897
Categoría:	CGI abuses
Título:	Dwarf HTTP Server Multiple Input Validation Vulnerabilities
Resumen:	NOSUMMARY
Descripción:	Description: The remote system is powered by a Dwarf HTTP Server, which, according to its version number, is vulnerable to a number of vulnerabilities due to the insufficient sanitization of user supplied input. Attackers can gain access to sensitive data and perform cross site scripting attacks. Versions up to and including 1.3.2 are vulnerable. Solution: Upgrade to version 1.3.3 or later. Risk factor : High CVSS Score: 7.8
Referencia Cruzada:	BugTraq ID: 17123 Common Vulnerability Exposure (CVE) ID: CVE-2006-0819 http://www.securityfocus.com/bid/17123 Bugtraq: 20060313 Secunia Research: Dwarf HTTP Server Source Disclosure andCross-Site Scripting (Google Search) http://www.securityfocus.com/archive/1/427478/100/0/threaded http://secunia.com/secunia_research/2006-13/advisory http://www.osvdb.org/23836 http://securitytracker.com/id?1015779 http://secunia.com/advisories/18962 http://securityreason.com/securityalert/576 http://www.vupen.com/english/advisories/2006/0937 XForce ISS Database: dwarfhttp-extension-information-disclosure(25178) https://exchange.xforce.ibmcloud.com/vulnerabilities/25178 Common Vulnerability Exposure (CVE) ID: CVE-2006-0820 http://www.osvdb.org/23837 XForce ISS Database: dwarfhttp-url-xss(25179) https://exchange.xforce.ibmcloud.com/vulnerabilities/25179
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.