Unrated severityNVD Advisory· Published Feb 13, 2002· Updated Apr 16, 2026
CVE-2002-1603
CVE-2002-1603
Description
GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.
Affected products
9cpe:2.3:a:goahead_software:goahead_webserver:2.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:goahead_software:goahead_webserver:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:goahead_software:goahead_webserver:2.1.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- aluigi.altervista.org/adv/goahead-adv3.txtnvdExploitVendor Advisory
- securitytracker.com/idnvdExploit
- www.securityfocus.com/bid/9239nvdExploit
- www.kb.cert.org/vuls/id/975041nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/124059nvdUS Government Resource
- data.goahead.com/Software/Webserver/2.1.8/release.htmnvd
- rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.phpnvd
- secunia.com/advisories/7741nvd
- www.kb.cert.org/vuls/id/RGII-7MWKZ3nvd
- www.osvdb.org/13295nvd
- www.procheckup.com/PDFs/ProCheckUp_Vulns_2002.pdfnvd
- www.procheckup.com/security_info/vuln_pr0213.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/10885nvd
News mentions
0No linked articles in our index yet.