Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aprelium technologies abyss web server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1081
The Administration console for Abyss Web Server 1.0.3 allows remote malicious users to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Aprelium Technologies Abyss Web Server 1.0.3
Aprelium Technologies Abyss Web Server 1.0
NA
CVE-2002-1080
The Administration console for Abyss Web Server 1.0.3 before Patch 2 allows remote malicious users to gain privileges and modify server configuration via direct requests to CHL files such as (1) srvstatus.chl, (2) consport.chl, (3) general.chl, (4) srvparam.chl, and (5) advanced....
Aprelium Technologies Abyss Web Server 1.0
Aprelium Technologies Abyss Web Server 1.0.3
NA
CVE-2003-1363
The remote web management interface of Aprelium Technologies Abyss Web Server 1.1.2 and previous versions does not log connection attempts to the web management port (9999), which allows remote malicious users to mount brute force attacks on the administration console without det...
Aprelium Technologies Abyss Web Server
NA
CVE-2003-1337
Heap-based buffer overflow in Aprelium Abyss Web Server 1.1.2 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP GET request.
Aprelium Technologies Abyss Web Server
NA
CVE-2003-1338
CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequences in the Location header.
Aprelium Technologies Abyss Web Server
NA
CVE-2003-1364
Aprelium Technologies Abyss Web Server 1.1.2, and possibly other versions prior to 1.1.4, allows remote malicious users to cause a denial of service (crash) via an HTTP GET message with empty (1) Connection or (2) Range fields.
Aprelium Technologies Abyss Web Server 1.1.2
1 EDB exploit
NA
CVE-2002-1079
Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote malicious users to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request.
Aprelium Technologies Abyss Web Server 1.0.3 P2
1 EDB exploit
NA
CVE-2002-0543
Directory traversal vulnerability in Aprelium Abyss Web Server (abyssws) prior to 1.0.0.2 allows remote malicious users to read files outside the web root, including the abyss.conf file, via URL-encoded .. (dot dot) sequences in the HTTP request.
Aprelium Technologies Abyss Web Server 1.0
1 EDB exploit
NA
CVE-2002-0544
Aprelium Abyss Web Server (abyssws) prior to 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.
Aprelium Technologies Abyss Web Server 1.0
1 EDB exploit
NA
CVE-2002-1078
Abyss Web Server 1.0.3 allows remote malicious users to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.
Aprelium Technologies Abyss Web Server 1.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started