Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via a GET request with a long filename, possibly due to a buffer overflow.
https://exchange.xforce.ibmcloud.com/vulnerabilities/14928
http://www.autistici.org/fdonato/advisory/tinyServer1.1%5B1.0.5%5D-adv.txt