Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Omnicron Subscribe
Filtered by product Omnihttpd
Total 10 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0970 1 Omnicron 1 Omnihttpd 2017-12-18 5.0 MEDIUM N/A
The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created.
CVE-2001-0778 1 Omnicron 1 Omnihttpd 2017-12-18 5.0 MEDIUM N/A
OmniHTTPd 2.0.8 and earlier allow remote attackers to obtain source code via a GET request with the URL-encoded symbol for a space (%20).
CVE-2001-0777 1 Omnicron 1 Omnihttpd 2017-12-18 5.0 MEDIUM N/A
Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests for PHP scripts.
CVE-2001-0613 1 Omnicron 1 Omnihttpd 2017-10-09 5.0 MEDIUM N/A
Omnicron Technologies OmniHTTPD Professional 2.08 and earlier allows a remote attacker to create a denial of service via a long POST URL request.
CVE-2004-2299 1 Omnicron 1 Omnihttpd 2017-07-10 7.5 HIGH N/A
Buffer overflow in Omnicron OmniHTTPd 3.0a and earlier allows remote attackers to execute arbitrary code via an HTTP GET request with a long Range header.
CVE-1999-0951 1 Omnicron 1 Omnihttpd 2008-09-09 10.0 HIGH N/A
Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands.
CVE-2002-1455 1 Omnicron 1 Omnihttpd 2008-09-05 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via (1) test.php, (2) test.shtml, or (3) redir.exe.
CVE-2002-1035 1 Omnicron 1 Omnihttpd 2008-09-05 5.0 MEDIUM N/A
Omnicron OmniHTTPd 2.09 allows remote attackers to cause a denial of service (crash) via an HTTP request with a long, malformed HTTP 1version number.
CVE-2001-0114 1 Omnicron 1 Omnihttpd 2008-09-05 5.0 MEDIUM N/A
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
CVE-2001-0113 1 Omnicron 1 Omnihttpd 2008-09-05 10.0 HIGH N/A
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.