|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA396] DSA-396-1 thttpd Vulnerability Assessment Details
|
[DSA396] DSA-396-1 thttpd |
||
DSA-396-1 thttpd Detailed Explanation for this Vulnerability Assessment Several vulnerabilities have been discovered in thttpd, a tiny HTTP server. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: Marcus Breiing discovered that if thttpd it is used for virtual hosting, and a possible hacker supplies a specially crafted &ldquo Host:&rdquo header with a pathname instead of a hostname, thttpd will reveal information about the host system. Hence, a possible hacker can browse the entire disk. Joel Söderberg and Christer Öberg discovered a remote overflow which permits a possible hacker to partially overwrite the EBP register and hence execute arbitrary code. For the stable distribution (woody) these problems have been fixed in version 2.21b-11.2. For the unstable distribution (sid) these problems have been fixed in version 2.23beta1-2.3. We recommend that you upgrade your thttpd package immediately. Solution : http://www.debian.org/security/2003/dsa-396 Network Security Threat Level: High Networks Security ID: 8906, 8924 Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi |
||
Cables, Connectors |
Seagate Exos X16 ST14000NM001G 14TB 512E SATA 6Gb/s 3.5" Enterprise Hard Drive
$157.99
WD 16TB Elements Desktop, Certified Refurbished Hard Drive - RWDBWLG0160HBK-NESN
$174.99
WD 2TB Certified Refurbished Elements, External Hard Drive - RWDBU6Y0020BBK-WESN
$49.99
$59.99
Seagate Exos 7E10 ST2000NM000B 2TB 7200RPM SATA 6.0Gb/s 3.5" Internal Hard Drive
$29.99
HGST Ultrastar DC HC520 12TB SATA 6Gb 256MB 3.5" Enterprise HDD- HUH721212ALE601
$82.99
HGST Ultrastar HE10 HUH721010ALE600 10TB SATA 6Gb/s 7200RPM 3.5" Enterprise HDD
$74.99
2 PACK Seagate ST1000LM035 Mobile HDD 1TB 2.5" SATA III Laptop Hard Drive
$27.49
Seagate Barracuda ST3000DM001 3TB 7200 RPM 64MB 6.0Gbs SATA 3.5" Internal HDD
$25.89
HDD 3.5" SATA Hard Drive with Windows 7/Win 10 Installed Legacy
$35.99
|
||
No Discussions have been posted on this vulnerability. |