Pi3Web Malformed GET Request Remote Overflow

Medium Nessus Plugin ID 11695


The remote web server is vulnerable to a remote overflow.


The remote Pi3Web web server may crash when it is sent a malformed request, like :

GET /</?SortName=A

This issue may allow the execution of arbitrary code.


Upgrade to Pi3Web 2.0.2 beta 2 or newer.

Plugin Details

Severity: Medium

ID: 11695

File Name: pi3web_dos2.nasl

Version: $Revision: 1.14 $

Type: remote

Family: Web Servers

Published: 2003/06/03

Modified: 2014/07/11

Dependencies: 10107, 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:pi3:pi3web

Vulnerability Publication Date: 2003/04/28

Reference Information

CVE: CVE-2003-0276

OSVDB: 11091