Lucene search

MitreCVE-2002-2269

HistoryOct 18, 2007 - 10:00 a.m.

CVE-2002-2269

2007-10-1810:00:00

CWE-22

mitre

web.nvd.nist.gov

cve-2002-2269

directory traversal

webster http server

remote attackers

arbitrary files

url vulnerability

nvd

CVSS2

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

70.7%

JSON

Directory traversal vulnerability in Webster HTTP Server allows remote attackers to read arbitrary files via a … (dot dot) in the URL.

Affected configurations

Nvd

Node

websterwebster_http_server

VendorProductVersionCPE
websterwebster_http_server*cpe:2.3:a:webster:webster_http_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
webster	webster_http_server	*	cpe:2.3:a:webster:webster_http_server::::::::

References

securityreason.com/securityalert/3262

www.securityfocus.com/archive/1/301893

www.securityfocus.com/bid/6291

exchange.xforce.ibmcloud.com/vulnerabilities/10728

CVSS2

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

70.7%

JSON

Related for CVE-2002-2269