CyberSec.Space Logo
Back to CVE Browser

CVE-2011-0751

HIGH
7.5
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile26.40th
PublishedMar 16, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.

Affected Platforms (CPE)

πŸ“¦
Nazgul

Nostromo

<= 1.9.3
πŸ“¦
Nazgul

Nostromo

= 0.1
πŸ“¦
Nazgul

Nostromo

= 0.2
πŸ“¦
Nazgul

Nostromo

= 0.3
πŸ“¦
Nazgul

Nostromo

= 0.4
πŸ“¦
Nazgul

Nostromo

= 0.5
πŸ“¦
Nazgul

Nostromo

= 0.6
πŸ“¦
Nazgul

Nostromo

= 0.7
πŸ“¦
Nazgul

Nostromo

= 0.8
πŸ“¦
Nazgul

Nostromo

= 0.9
πŸ“¦
Nazgul

Nostromo

= 1.0
πŸ“¦
Nazgul

Nostromo

= 1.1
πŸ“¦
Nazgul

Nostromo

= 1.2
πŸ“¦
Nazgul

Nostromo

= 1.3
πŸ“¦
Nazgul

Nostromo

= 1.4
πŸ“¦
Nazgul

Nostromo

= 1.5
πŸ“¦
Nazgul

Nostromo

= 1.5.1
πŸ“¦
Nazgul

Nostromo

= 1.6
πŸ“¦
Nazgul

Nostromo

= 1.7
πŸ“¦
Nazgul

Nostromo

= 1.7.1
πŸ“¦
Nazgul

Nostromo

= 1.7.2
πŸ“¦
Nazgul

Nostromo

= 1.7.3
πŸ“¦
Nazgul

Nostromo

= 1.7.4
πŸ“¦
Nazgul

Nostromo

= 1.7.5
πŸ“¦
Nazgul

Nostromo

= 1.7.6
πŸ“¦
Nazgul

Nostromo

= 1.7.7
πŸ“¦
Nazgul

Nostromo

= 1.7.8
πŸ“¦
Nazgul

Nostromo

= 1.7.9
πŸ“¦
Nazgul

Nostromo

= 1.8
πŸ“¦
Nazgul

Nostromo

= 1.8.1
πŸ“¦
Nazgul

Nostromo

= 1.8.2
πŸ“¦
Nazgul

Nostromo

= 1.8.3
πŸ“¦
Nazgul

Nostromo

= 1.8.4
πŸ“¦
Nazgul

Nostromo

= 1.8.5
πŸ“¦
Nazgul

Nostromo

= 1.8.6
πŸ“¦
Nazgul

Nostromo

= 1.8.7
πŸ“¦
Nazgul

Nostromo

= 1.8.8
πŸ“¦
Nazgul

Nostromo

= 1.8.9
πŸ“¦
Nazgul

Nostromo

= 1.9
πŸ“¦
Nazgul

Nostromo

= 1.9.1
πŸ“¦
Nazgul

Nostromo

= 1.9.2

References & Advisories

πŸ”— http://osvdb.org/71235
πŸ”— http://secunia.com/advisories/43775
πŸ”— http://securityreason.com/securityalert/8140
πŸ”— http://www.nazgul.ch/dev_nostromo.html
πŸ”— http://www.redteam-pentesting.de/advisories/rt-sa-2011-001
πŸ”— http://www.securityfocus.com/archive/1/517026/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/46880
πŸ”— http://www.vupen.com/english/advisories/2011/0674

Related Vulnerabilities

CVE-2019-162789.8

Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code executi...

CVE-2019-162797.5

A memory error in the function SSL_accept in nostromo nhttpd through 1.9.6 allows an attacker to trigger a denial of service via a...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...