Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1144

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1144
Last Modified 17 Aug 2013 12:16:26
Published 11 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1144

Summary

Directory traversal vulnerability in McAfee ASaP VirusScan agent 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.

Vulnerable Systems

Application

  • Mcafee Asap Virusscan 1.0


References

CERT-VN - VU#190267

BID - 3020

BUGTRAQ - 20010711 McAfee ASaP Virusscan - myCIO HTTP Server Directory Traversal Vulnerabilty

XF - mcafee-mycio-directory-traversal(6834)

OSVDB - 584

NTBUGTRAQ - 20010716 McAfee ASaP Virusscan - MyCIO HTTP Server Directory Traversal Vul nerability


Last Updated: 27 May 2016 10:36:32