Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0674

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0674
Last Modified 19 Dec 2009 12:08:11
Published 20 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0674

Summary

Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attackers to read arbitrary files via a hexadecimal encoded dot-dot attack (eg. http://www.server.com/%2e%2e/%2e%2e) in an HTTP URL request.

Vulnerable Systems

Application

  • Robtex Viking Server 1.0.4

  • Robtex Viking Server 1.0.6

  • Robtex Viking Server 1.0.7

  • Robtex Viking Server 1.0.7 Build381


References

XF - viking-hex-directory-traversal(6394)

BUGTRAQ - 20010417 Advisory for Viking

CONFIRM - http://www.robtex.com/viking/bugs.htm


Last Updated: 27 May 2016 10:36:21