2 matches found
CVE-2001-0215
Summary (CVE-2001-0215) : The ROADS project’s CGI, search.pl, is vulnerable to a remote arbitrary-file-read via the filename parameter terminated with a null byte. This is due to improper handling of the filename in the CGI, allowing an attacker to access files the HTTP server has read privileges...
CVE-2001-0215
ROADS search.pl program allows remote attackers to read arbitrary files by specifying the file name in the form parameter and terminating the filename with a null byte...