Lucene search

[email protected]CVE-2004-0061

HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0061

2004-02-1705:00:00

[email protected]

web.nvd.nist.gov

cve-2004-0061

remote code execution

www file share pro 2.42

directory access restrictions

url bypass

uri bypass

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.8%

JSON

WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.

Affected configurations

NVD

Node

lionmax_softwarewww_file_share_proRange≤2.42

CPENameOperatorVersion
lionmax_software:www_file_share_prolionmax software www file share prole2.42

CPE	Name	Operator	Version
lionmax_software:www_file_share_pro	lionmax software www file share pro	le	2.42

References

marc.info/?l=bugtraq&m=107411794303201&w=2

www.securitytracker.com/id?1008779

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.8%

JSON

Related for CVE-2004-0061

cvelist1 nvd1