VYPR

Pico Server

by PServ

CVEs (4)

  • CVE-2005-1366May 16, 2005
    risk 0.04cvss epss 0.07

    Pico Server (pServ) 3.2 and earlier allows remote attackers to obtain the source code for CGI scripts via "dirname/../cgi-bin" in a URL.

  • CVE-2005-1952Jun 16, 2005
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in Pico Server (pServ) 3.3 allows remote attackers to read arbitrary files and execute arbitrary commands via a /./ (slash dot slash) before each .. (dot dot) sequence in the URL, which results in an incorrect directory depth count.

  • CVE-2005-1953Jun 11, 2005
    risk 0.00cvss epss 0.03

    Heap-based buffer overflow in the CGI extension for Pico Server (pServ) 3.3 allows remote attackers to execute arbitrary code via a long HTTP request.

  • CVE-2005-1626May 17, 2005
    risk 0.00cvss epss 0.02

    Multiple buffer overflows in handlers.c for Pico Server (pServ) before 3.3 may allow attackers to execute arbitrary code.