Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1010

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1010
Last Modified 05 Sep 2008 04:25:27
Published 22 Jul 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1010

Summary

Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.

Vulnerable Systems

Application

  • Sambar Server 4.4

  • Sambar Server 5.0


References

XF - sambar-pagecount-overwrite-files(6916)

BID - 3092

CONFIRM - http://www.sambar.com/security.htm

BUGTRAQ - 20010721 Sambar Web Server pagecount exploit code


Last Updated: 27 May 2016 10:36:29