Lucene search
HistoryMar 09, 2002 - 5:00 a.m.
CVE-2001-1010
cve-2001-1010
sambar server
dot dot attack
nvd
cgi script
vulnerability
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.3%
Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a … (dot dot) attack on the page parameter.
Affected configurations
Node
sambarsambar_serverMatch4.4
ORsambarsambar_serverMatch5.0beta1
ORsambarsambar_serverMatch5.0beta2
ORsambarsambar_serverMatch5.0beta3
ORsambarsambar_serverMatch5.0beta4
| CPE | Name | Operator | Version |
|---|---|---|---|
| sambar:sambar_server | sambar sambar server | eq | 4.4 |
| sambar:sambar_server | sambar sambar server | eq | 5.0 |
Related
openvas
openvas
Sambar pagecount Vulnerability - Active Check
2005-11-03 00:00:00
cvelist
cvelist
CVE-2001-1010
2002-03-09 05:00:00
nvd
nvd
CVE-2001-1010
2001-07-22 04:00:00
nessus
nessus
Sambar Server pagecount CGI Traversal Arbitrary File Overwrite
2001-07-29 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.3%
Related for CVE-2001-1010