Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0561

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0561
Last Modified 05 Sep 2008 04:24:24
Published 14 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0561

Summary

Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1disp4.cgi.

Vulnerable Systems

Application

  • Drummond Miles A1stats 1.0

  • Drummond Miles A1stats 1.6


References

CERT-VN - VU#471691

XF - a1stats-dot-directory-traversal(6503)

BUGTRAQ - 20010507 Advisory for A1Stats

BID - 2705


Last Updated: 27 May 2016 10:36:18