Lucene search

[email protected]CVE-2002-0556

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0556

2002-07-0304:00:00

[email protected]

web.nvd.nist.gov

security

vulnerability

directory traversal

quik-serv http server

remote attackers

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.9%

JSON

Directory traversal vulnerability in Quik-Serv HTTP server 1.1B allows remote attackers to read arbitrary files via a … (dot dot) in a URL.

Affected configurations

NVD

Node

deep_forest_softwarequik-serv_webserverMatch1.1b

CPENameOperatorVersion
deep_forest_software:quik-serv_webserverdeep forest software quik-serv webservereq1.1b

CPE	Name	Operator	Version
deep_forest_software:quik-serv_webserver	deep forest software quik-serv webserver	eq	1.1b

References

archives.neohapsis.com/archives/bugtraq/2002-04/0051.html

www.iss.net/security_center/static/8754.php

www.securityfocus.com/bid/4425

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.9%

JSON

Related for CVE-2002-0556

nvd1 cvelist1