Unrated severityNVD Advisory· Published Mar 3, 2004· Updated Apr 16, 2026

CVE-2004-1990

Description

Aldo's Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a malformed request.

Affected products

Aldo Vargas/Aldos Web Server
cpe:2.3:a:aldo_vargas:aldos_web_server:1.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/11542nvdExploitVendor Advisory
www.oliverkarow.de/research/AldosWebserverMultipleVulns.txtnvdExploitVendor Advisory
www.securityfocus.com/bid/10262nvdExploitVendor Advisory
marc.infonvd
www.osvdb.org/5880nvd
exchange.xforce.ibmcloud.com/vulnerabilities/16047nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000