Bypassing Authentication in GeoHttpServer via Encoded Newlines

Bypassing Authentication in GeoHttpServer via Encoded Newlines

CVE-2004-2100 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

GeoHttpServer, when configured to authenticate users, allows remote attackers to bypass authentication and access unauthorized files via a URL that contains %0a%0a (encoded newlines).

Learn more about our Cis Benchmark Audit For Server Software.