Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0773

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0773
Last Modified 05 Sep 2008 04:28:54
Published 12 Aug 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0773

Summary

imp_rootdir.asp for Hosting Controller allows remote attackers to copy or delete arbitrary files and directories via a direct request to imp_rootdir.asp and modifying parameters such as (1) ftp, (2) owwwPath, and (3) oftpPath.

Vulnerable Systems

Application

  • Hosting Controller 1.1

  • Hosting Controller 1.3

  • Hosting Controller 1.4

  • Hosting Controller 1.4.1

  • Hosting Controller 1.4b


References

BUGTRAQ - 20020517 Hosting Controller still have dangerous bugs!

BID - 4761

XF - hosting-controller-improotdir-commands(9105)


Last Updated: 27 May 2016 10:37:04