acme

Top products

The 15 most recently published vulnerabilities affecting acme.

• CVE-2024-0263ACME Ultra Mini HTTPd HTTP GET Request denial of service5.3Jan 7, 2024
• CVE-2007-0158thttpd 2007 has buffer underflow.9.8Dec 27, 2019
• CVE-2012-5640thttpd has a local DoS vulnerability via specially-crafted .htpasswd files5.5Nov 25, 2019
• CVE-2018-18778ACME mini_httpd before 1.30 lets remote users read arbitrary files.6.5Oct 29, 2018
• CVE-2017-17663The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.9.8Feb 6, 2018
• CVE-2015-1548mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size ca...5.0Feb 10, 2015
• CVE-2014-4927Buffer overflow in ACME micro_httpd, as used in D-Link DSL2750U and DSL2740U and NetGear WGR614 and MR-ADSL-DG834 routers allows remote attackers to cause a denial of service (crash) via a long str...7.8Jul 24, 2014
• CVE-2013-0348thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.2.1Dec 13, 2013
• CVE-2010-1544micro_httpd on the RCA DCM425 cable modem allows remote attackers to cause a denial of service (device reboot) via a long string to TCP port 80.5.0Apr 26, 2010
• CVE-2009-4490mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overw...5.0Jan 13, 2010
• CVE-2009-4491thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwri...9.8Jan 13, 2010
• CVE-2001-1496Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.9.8Jun 21, 2005
• CVE-2003-0899Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when ...9.8Oct 30, 2003
• CVE-2001-0893Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.5.0Feb 2, 2002
• CVE-2001-0892Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a traili...5.0Feb 2, 2002