Mathopd : Security Vulnerabilities, CVEs,

CVE-2012-1050

Directory traversal vulnerability in Mathopd 1.4.x and 1.5.x before 1.5p7, when configured with the * construct for mass virtual hosting, allows remote attackers to read arbitrary files via a crafted Host header.
Max CVSS
4.3
EPSS Score
0.35%
Published
2012-02-13
Updated
2021-06-01

CVE-2005-0824

The internal_dump function in Mathopd before 1.5p5, and 1.6x before 1.6b6 BETA, when Mathopd is running with the -n option, allows local users to overwrite arbitrary files via a symlink attack on dump files that are triggered by a SIGWINCH signal.
Max CVSS
5.5
EPSS Score
0.04%
Published
2005-05-02
Updated
2024-01-26

CVE-2003-1228

Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via an HTTP request with a long path.
Max CVSS
7.5
EPSS Score
8.28%
Published
2003-12-31
Updated
2021-06-01
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close