Vulnerabilities (CVE)

Filtered by vendor Geovision Subscribe
Filtered by product Geohttpserver
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-2101 1 Geovision 1 Geohttpserver 2024-11-20 5.0 MEDIUM N/A
The sysinfo script in GeoHttpServer allows remote attackers to cause a denial of service (crash) via a long pwd parameter, possibly triggering a buffer overflow.
CVE-2004-2100 1 Geovision 1 Geohttpserver 2024-11-20 5.0 MEDIUM N/A
GeoHttpServer, when configured to authenticate users, allows remote attackers to bypass authentication and access unauthorized files via a URL that contains %0a%0a (encoded newlines).