cbcvebase.

Pi3 Pi3Web vulnerabilities

6 known vulnerabilities affecting pi3/pi3web.

Total CVEs
6
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM5

Vulnerabilities

Page 1 of 1
CVE-2003-0276P4MEDIUMCVSS 5.0PoCv2.0.12003-06-16
CVE-2003-0276 [MEDIUM] CVE-2003-0276: Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and pos Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GET request with a large number of / characters.
nvd
CVE-2002-0142P4HIGHCVSS 7.5PoCv2.02002-03-25
CVE-2002-0142 [HIGH] CVE-2002-0142: CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denia CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.
nvd
CVE-2001-0302P4MEDIUMCVSS 5.0PoCv1.0.12001-05-03
CVE-2001-0302 [MEDIUM] CVE-2001-0302: Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL.
nvd
CVE-2003-1032P4MEDIUMCVSS 5.0PoCv2.0.2_beta_12004-02-17
CVE-2003-1032 [MEDIUM] CVE-2003-1032: Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly involving a buffer overflow.
nvd
CVE-2002-0433P4MEDIUMCVSS 5.0v2.0.02002-07-26
CVE-2002-0433 [MEDIUM] CVE-2002-0433: Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" ( Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" (wildcard or asterisk) character.
nvd
CVE-2001-0303P4MEDIUMCVSS 5.0v1.0.12001-05-03
CVE-2001-0303 [MEDIUM] CVE-2001-0303: tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of th tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of the server via a URL that requests a non-existent file.
nvd
Pi3 Pi3Web vulnerabilities | cvebase