Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
thttpd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-1457
Buffer overflow in thttpd HTTP server prior to 2.04-31 allows remote malicious users to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.
Thttpd Thttpd Http Server
Thttpd Thttpd Http Server 1.90a
NA
CVE-2000-0359
Buffer overflow in Trivial HTTP (THTTPd) allows remote malicious users to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
Acme Labs Thttpd 2.0.1
Acme Labs Thttpd 2.0.2
Acme Labs Thttpd 2.0.3
Acme Labs Thttpd 2.0.4
Acme Labs Thttpd 1.90a
Acme Labs Thttpd 2.0
Acme Labs Thttpd 1.95
NA
CVE-2000-0900
Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and previous versions allows remote malicious users to read arbitrary files via a "%2e%2e" string, a variation of the .. (dot dot) attack.
Acme Labs Thttpd 2.16
Acme Labs Thttpd 2.17
Acme Labs Thttpd 2.18
Acme Labs Thttpd 2.19
NA
CVE-1999-1456
thttpd HTTP server 2.03 and previous versions allows remote malicious users to read arbitrary files via a GET request with more than one leading / (slash) character in the filename.
Thttpd Thttpd Http Server
9.8
CVSSv3
CVE-2003-0899
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote malicious users to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when the characters are expanded to "<"...
Acme Thttpd 2.23
Acme Thttpd
2 EDB exploits
1 Github repository
NA
CVE-2005-3124
syslogtocern in Acme thttpd prior to 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file.
Acme Labs Thttpd 2.21b
Acme Labs Thttpd 2.23b1
9.8
CVSSv3
CVE-2001-1496
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 up to and including 2.20 allows remote malicious users to cause a denial of service and possibly execute arbitrary code.
Acme Thttpd
5.5
CVSSv3
CVE-2012-5640
thttpd has a local DoS vulnerability via specially-crafted .htpasswd files
Acme Thttpd -
NA
CVE-2001-0892
Acme Thttpd Secure Webserver prior to 2.22, with the chroot option enabled, allows remote malicious users to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
Acme Thttpd
NA
CVE-2007-0664
thttpd prior to 2.25b-r6 in Gentoo Linux is started from the system root directory (/) by the Gentoo baselayout 1.12.6 package, which allows remote malicious users to read arbitrary files.
Acme Labs Thttpd
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »