Lucene search

MitreCVE-2003-0756

HistoryOct 20, 2003 - 4:00 a.m.

CVE-2003-0756

2003-10-2004:00:00

mitre

web.nvd.nist.gov

cve

directory traversal

vulnerability

sitebuilder 1.4

remote attackers

arbitrary files

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.065

Percentile

93.9%

JSON

Directory traversal vulnerability in sitebuilder.cgi in SiteBuilder 1.4 allows remote attackers to read arbitrary files via … (dot dot) sequences in the selectedpage parameter.

Affected configurations

Nvd

Node

sitebuildersitebuilderMatch1.4

VendorProductVersionCPE
sitebuildersitebuilder1.4cpe:2.3:a:sitebuilder:sitebuilder:1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sitebuilder	sitebuilder	1.4	cpe:2.3:a:sitebuilder:sitebuilder:1.4:::::::*

References

archives.neohapsis.com/archives/bugtraq/2003-09/0011.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.065

Percentile

93.9%

JSON

Related for CVE-2003-0756