CVE-2002-1603

GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:goahead_software:goahead_webserver:2.0:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.6:*:*:*:*:*:*:*
cpe:2.3:a:goahead_software:goahead_webserver:2.1.7:*:*:*:*:*:*:*

History

No history.

Information

Published : 2002-02-13 05:00

Updated : 2024-02-28 10:24


NVD link : CVE-2002-1603

Mitre link : CVE-2002-1603

CVE.ORG link : CVE-2002-1603


JSON object : View

Products Affected

goahead_software

  • goahead_webserver