Title: 04WebServer Multiple Vulnerabilities
Severity: MODERATE
Description:
04WebServer is a typical webserver application. It is freely available for the Microsoft Windows platform.
Multiple remote vulnerabilities affect 04WebServer. Some issues are due to the application's failure to properly sanitize user-supplied input.
The following specific vulnerabilities were identified:
1. The first issue is a cross-site scripting vulnerability. The problem presents because the webserver fails to sanitize user-supplied input supplied through URI requests. This may facilitate cross-site scripting attacks against any sites hosted by the vulnerable server.
2. The second issue arises due to an unspecified error that allows attackers to bypass certain user-identification checks.
An attacker may leverage the input validation issues to carry out cross-site scripting attacks against any websites hosted on the affected server and bypass certain unspecified security checks.
04WebServer 1.83 and prior versions are vulnerable.
Affected Products:
- 04WebServer 04WebServer 1.5.0
- 04WebServer 04WebServer 1.83
- 04WebServer Web Server 1.42.0
References:
- 04WebServer: 04WebServer Home Page
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
