Skip to main content
Security Advisory

GoAhead Web Server

Restrict access to affected products on the web application port (typically TCP/80, TCP/443, and TCP/8080)

Risk Information

affected product:

GoAhead Web Server: prior to v4.0.1

Limited Threat

CVE ID

CVE-2011-4273

CVE-2009-5111

CVE-2003-1569

CVE-2003-1568

CVE-2002-2431

CVE-2002-2430

CVE-2002-2429

CVE-2002-2428

CVE-2002-2427

ID

CVE-2011-4273

Source

Dragos

Skill Level

N/A

CVSSV3 BASE / TEMPORAL SCORE

N/A

CVSSV3 vector

N/A

Affecting

  • GoAhead Web Server: prior to v4.0.1
  • Vulnerability Type

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

    Resource Exhaustion

    Memory Corruption

    Improper Input Validation

    Incorrect Behavior via Unknown Malicious Code

    Denial of Service CPU Consumption

    Denial of Service Daemon Crash

    Denial of Service Pointer Dereference and Daemon Crash

    Unauthorized Access and Authentication Bypass

    Disclosure Timeline

    10/18/2017 - Dragos discloses issue