Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Lighttpd Other Vulnerability - CVE-2005-0453 - Vulnerability Database
Lighttpd

Lighttpd Other Vulnerability - CVE-2005-0453

Medium
Reference: CVE-2005-0453
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2005-0453
Title: Lighttpd Other Vulnerability
Overview:

The buffer_urldecode function in Lighttpd 1.3.7 and earlier does not properly handle control characters which allows remote attackers to obtain the source code for CGI and FastCGI scripts via a URL with a 00 (null) character after the file extension.