CVE-2001-1344

2002-05-0304:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.2%

JSON

WSSecurity.pl in WebStore allows remote attackers to bypass authentication by providing the program with a filename that exists, which is made easier by (1) inserting a null character or (2) … (dot dot).

References

archives.neohapsis.com/archives/bugtraq/2001-06/0142.html

www.securityfocus.com/bid/2860

exchange.xforce.ibmcloud.com/vulnerabilities/6685