Lucene search

[email protected]CVE-2007-0919

HistoryFeb 14, 2007 - 11:28 a.m.

CVE-2007-0919

2007-02-1411:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0919

directory traversal

miniwebsvr

security vulnerability

nvd

6.9 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.017 Low

EPSS

Percentile

87.7%

JSON

Directory traversal vulnerability in Nickolas Grigoriadis Mini Web server (MiniWebsvr) 0.0.6 allows remote attackers to list the directory immediately above the web root via a …%00 sequence in the URI.

CPENameOperatorVersion
nickolas_grigoriadis:mini_web_servernickolas grigoriadis mini web servereq0.0.6

CPE	Name	Operator	Version
nickolas_grigoriadis:mini_web_server	nickolas grigoriadis mini web server	eq	0.0.6

References

attrition.org/pipermail/vim/2007-February/001315.html

osvdb.org/33513

securityreason.com/securityalert/2248

www.securityfocus.com/archive/1/459829/100/0/threaded

www.securityfocus.com/bid/22523

exchange.xforce.ibmcloud.com/vulnerabilities/32451

6.9 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.017 Low

EPSS

Percentile

87.7%

JSON

Related for CVE-2007-0919

prion1 securityvulns1