Info

Disclosure

Nov 11, 2002

Discovery

Unknown

Dates

Exploit

Nov 11, 2002

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Third-Party Solution
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, dong-houn yoU has released an unofficial patch to address this vulnerability. As with all third-party solutions, ensure they come from a reliable source and are permitted under your company's security policy.

Products

Unknown or Incomplete

References

ISS X-Force ID: 10596
CVE ID: 2002-1819 (see also: NVD)
Bugtraq ID: 6158
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-11/0130.html
Vendor URL: http://tinyhttpd.sourceforge.net/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/59167