5 matches found
CVE-2011-2474
Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allows remote attackers to read arbitrary files via a /.\../\../\ sequence in a path...
CVE-2011-2474
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/sybaseeaservertraversal.rb 2025-02-06 03:13:40+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:55+00:00|...
Sybase Multiple Products Directory Traversal (CVE-2011-2474)
A directory traversal vulnerability has been reported in multiple Sybase products...
Sybase Easerver 6.3 Directory Traversal
This module exploits a directory traversal vulnerability found in Sybase EAserver's Jetty webserver on port 8000. Code execution seems unlikely with EAserver's default configuration unless the web server allows WRITE permission. This module requires Metasploit: https://metasploit.com/download...
CVE-2011-2474
CVE-2011-2474 affects Sybase EAServer 6.3.1 Developer Edition (HTTP Server). The vulnerability is a directory traversal issue that allows remote attackers to read arbitrary files by sending a path containing a /.../ sequence. The published CVSS base score in NVD is 5.0 (Medium) with network acces...