CVE-2002-1562

NameCVE-2002-1562
DescriptionDirectory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files via .. (dot dot) sequences in the Host: header.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-396
Debian Bugs216677

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
thttpdsourcewoody2.21b-11.2DSA-396
thttpdsource(unstable)2.23beta1-2.3216677

Search for package or bug name: Reporting problems