Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
John Roy Pi3Web远程缓冲区溢出漏洞
Vulnerability Description
John Roy Pi3Web是一个小型的Web服务器程序。 Pi3Web实现上存在多个安全漏洞,远程攻击者可能利用这些漏洞在主机上执行任意指令或获得服务器相关的信息。 John Roy Pi3Web服务器存在一个缓冲区溢出漏洞,它携带的ISAPI应用程序未能正确处理用户输入,恶意的远程攻击者提交一个精心构造过的URL请求会导致服务方发生缓冲区溢出,潜在允许执行任意指令。 此外,如果提交一个无效URL,John Roy Pi3Web服务将泄漏WEB根目录的物理路径。
CVSS Information
N/A
Vulnerability Type
N/A