VYPR

Aldo\'s Web Server

by Aldostools

CVEs (2)

  • CVE-2004-1991May 3, 2004
    risk 0.00cvss epss 0.03

    Directory traversal vulnerability in Aldo's Web Server (aweb) 1.5 allows remote attackers to view arbitrary files via a .. (dot dot) in an HTTP GET request.

  • CVE-2004-1990Mar 3, 2004
    risk 0.00cvss epss 0.03

    Aldo's Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a malformed request.