Lucene search

K
cve[email protected]CVE-2004-0061
HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0061

2004-02-1705:00:00
web.nvd.nist.gov
18
cve-2004-0061
remote code execution
www file share pro 2.42
directory access restrictions
url bypass
uri bypass

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.007

Percentile

80.8%

WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.

Affected configurations

NVD
Node
lionmax_softwarewww_file_share_proRange2.42
VendorProductVersionCPE
lionmax_softwarewww_file_share_procpe:/a:lionmax_software:www_file_share_pro::::

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.007

Percentile

80.8%

Related for CVE-2004-0061