CVE-2002-1133

2002-09-2404:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.6%

JSON

Encoded directory traversal vulnerability in Dino’s web server 2.1 allows remote attackers to read arbitrary files via “…” (dot dot) sequences with URL-encoded (1) “/” (%2f") or (2) "" (%5c) characters.

References

archives.neohapsis.com/archives/vulnwatch/2002-q3/0127.html

marc.info/?l=bugtraq&m=103281444824285&w=2

www.iss.net/security_center/static/10168.php

www.securityfocus.com/bid/5782