thttpd before 2.25b-r6 in Gentoo Linux is started from the system root directory (/) by the Gentoo baselayout 1.12.6 package, which allows remote attackers to read arbitrary files.
Max CVSS
5.0
EPSS Score
0.96%
Published
2007-02-02
Updated
2023-11-28
1 vulnerabilities found