{"edition": 1, "title": "Soft Lite ServerWorx Arbitrary File Access", "bulletinFamily": "software", "published": "2001-02-07T00:00:00", "lastseen": "2017-04-28T13:20:02", "history": [], "modified": "2001-02-07T00:00:00", "reporter": "OSVDB", "hash": "01a5c06070915fe4d8730088d7231d5fdbc13525fd0ad845ae81376a60574d66", "viewCount": 0, "href": "https://vulners.com/osvdb/OSVDB:7702", "description": "# No description provided by the source\n\n## References:\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-02/0137.html\nISS X-Force ID: 6081\n[CVE-2001-0206](https://vulners.com/cve/CVE-2001-0206)\nBugtraq ID: 2346\n", "affectedSoftware": [], "type": "osvdb", "hashmap": [{"key": "affectedSoftware", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "fb6de87dd338186119e0ceed4dd02e24"}, {"key": "cvss", "hash": "a792e2393dff1e200b885c5245988f6f"}, {"key": "description", "hash": "0b462b1e72f3a3367367274479b1ea74"}, {"key": "href", "hash": "eb1d9ca2aa53c51ff949141891f417a9"}, {"key": "modified", "hash": "06e0b252cc0d6593c88c05bacbf39303"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "06e0b252cc0d6593c88c05bacbf39303"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "955b328dc7cd615c13af5464c9183464"}, {"key": "title", "hash": "5ff34be868e1ba3ceb120a865f9ace4d"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "references": [], "objectVersion": "1.2", "enchantments": {"score": {"vector": "NONE", "value": 5.0}, "vulnersScore": 5.0}, "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/", "score": 5.0}, "cvelist": ["CVE-2001-0206"], "id": "OSVDB:7702"}

{"cve": [{"lastseen": "2016-09-03T02:54:39", "references": ["http://archives.neohapsis.com/archives/bugtraq/2001-02/0137.html", "http://www.securityfocus.com/bid/2346"], "description": "Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request.", "edition": 1, "reporter": "NVD", "published": "2001-06-02T00:00:00", "title": "CVE-2001-0206", "type": "cve", "enchantments": {"score": {"modified": "2016-09-03T02:54:39", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2001-0206"], "scanner": [], "cpe": ["cpe:/a:soft_lite:serverworx:3.00"], "modified": "2008-09-05T16:23:32", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-0206", "id": "CVE-2001-0206", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "exploitdb": [{"lastseen": "2016-02-02T14:38:44", "osvdbidlist": ["7702"], "references": [], "edition": 1, "description": "Soft Lite ServerWorx 3.0 Directory Traversal Vulnerability. CVE-2001-0206. Remote exploit for windows platform", "reporter": "joetesta", "published": "2001-02-07T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "exploitdb", "title": "soft lite serverworx 3.0 - Directory Traversal Vulnerability", "bulletinFamily": "exploit", "cvelist": ["CVE-2001-0206"], "modified": "2001-02-07T00:00:00", "id": "EDB-ID:20616", "href": "https://www.exploit-db.com/exploits/20616/", "sourceData": "source: http://www.securityfocus.com/bid/2346/info\r\n\r\nIt is possible for a remote user to gain read access to directories and files outside the root directory of ServerWorx. Requesting a specially crafted URL composed of '../' or '.../' sequences will disclose an arbitrary directory. \r\n\r\nhttp://target/../[file outside web root]\r\n\r\nhttp://target/.../[file outside web root] ", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "sourceHref": "https://www.exploit-db.com/download/20616/"}]}