Mbedthis AppWeb before 2.2.2 enables the HTTP TRACE method, which has unspecified impact probably related to remote information leaks and cross-site tracing (XST) attacks, a related issue to CVE-2004-2320 and CVE-2005-3398.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:32
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/25636 - Vendor Advisory | |
References | () http://www.appwebserver.org/forum/viewtopic.php?t=996 - | |
References | () http://www.mbedthis.com/products/appWeb/doc/product/newFeatures.html - | |
References | () http://www.osvdb.org/35511 - | |
References | () http://www.securityfocus.com/bid/24456 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/34854 - |
Information
Published : 2007-06-04 17:30
Updated : 2024-11-21 00:32
NVD link : CVE-2007-3008
Mitre link : CVE-2007-3008
CVE.ORG link : CVE-2007-3008
JSON object : View
Products Affected
mbedthis_software
- mbedthis_appweb_http_server