CVE-2002-2229

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2002-2229
Directory traversal vulnerability in Sapio Design Ltd. WebReflex 1.53 allows remote attackers to read arbitrary files via a .. in an HTTP request.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://archives.neohapsis.com/archives/bugtraq/2002-12/0068.html
http://www.securityfocus.com/bid/6327
http://www.iss.net/security_center/static/10782.php
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:a:sapio_design_ltd:webreflex:1.53:*:*:*:*:*:*:*
Information

Published : 2002-12-30 21:00

Updated : 2008-09-05 13:32

NVD link : CVE-2002-2229

Mitre link : CVE-2002-2229

JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa
Products Affected

sapio_design_ltd

  • webreflex