CVE-2000-0898

Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file.

Published: Jan 9, 2001
Updated: Apr 13, 2023
CVE: CVE-2000-0898
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
max_feoktistov / small_http_server	2.01	2.01.x

http://marc.info/?l=bugtraq&m=97421834001092&w=2

Vulnerability Database

290,020

CVE-2000-0898