Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0671


Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0671
Last Modified 10 Sep 2008 03:05:34
Published 21 Jul 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL.

Vulnerable Systems


  • Roxen Webserver 2.0.x


BUGTRAQ - 20000721 Roxen security alert: Problems with URLs containing null characters.

XF - roxen-null-char-url

BID - 1510

BUGTRAQ - 20000721 Roxen Web Server Vulnerability

Last Updated: 27 May 2016 10:35:49