192 matches found
CVE-2000-0674
CVE-2000-0674 affects the ftp.pl CGI in Virtual Visions' FTP server, allowing remote attackers to read directories outside the document root via a ../ traversal. The vulnerable component is the CGI script handling FTP directory listings (ftp.pl). Impact is information disclosure (directory listin...
CVE-2000-0191
The CVE-2000-0191 issue affects Axis StorPoint CD. A directory traversal vulnerability allows remote attackers to reach administrator URLs without authentication by exploiting a .. sequence, enabling an authentication bypass. The Nessus entry references a specific crafted URL path (e.g., /cd/../c...
CVE-2000-0469
The vulnerability concerns Selena Sol WebBanner 4.0, where a path traversal flaw (.. sequence) enables remote attackers to read arbitrary files. Affected software: Selena Sol WebBanner 4.0. The description specifies reading arbitrary files via directory traversal, but no further technical details...
CVE-2000-0660
CVE-2000-0660 affects the WDaemon web server for WorldClient 2.1, allowing remote attackers to read arbitrary files through a directory-traversal (..). The underlying issue is improper handling of path components, enabling unauthorized file access. Exploitation details are not provided in the CVE...
CVE-1999-0927
NTMail is affected by CVE-1999-0927; remote attackers can read arbitrary files via a directory traversal (..). The provided documents do not include remediation or version-specific details.
CVE-2000-0780
The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. dot dot attack...
CVE-2000-0240
CVE-2000-0240 affects vqSoft vqServer. Multiple sources (NVD, CVE list, OPENVAS/Nessus, PT-2000-1222) describe a directory traversal style flaw where an attacker can read arbitrary files by using a URL containing a "/........../" segment, a variation of a ". ." (dot-dot) path traversal. Affected ...
CVE-2000-0686
Auction Weaver CGI script 1.03 and earlier is affected by a traversal flaw that lets remote attackers read arbitrary files through a .. attack in the fromfile parameter. Affected product: Auction Weaver LITE (1.0–1.04) per historical advisories; impact is remote file disclosure. Patch available: ...
CVE-2000-0526
MailStudio 2000 (mailview.cgi) 2.0 and earlier is affected by CVE-2000-0526 via a directory traversal (.. ) attack that allows remote attackers to read arbitrary files. The vulnerability targets the mailview.cgi CGI program and results in partial confidentiality impact. The provided documents do ...
CVE-2000-0660
The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. dot dot attack...
CVE-2000-0261
The AVM KEN! web server allows remote attackers to read arbitrary files via a .. dot dot attack...
CVE-2000-0303
Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot .. attack...
CVE-2000-0436
Technical details about CVE-2000-0436 are not publicly provided in the supplied documents; no affected versions, root cause, or remediation information are disclosed here. Monitor for updates.
CVE-2000-0174
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. dot dot attack...
CVE-2000-0303
Quake3 Arena is affected by CVE-2000-0303 due to a path traversal (dot dot) vulnerability that enables a malicious server operator to read or modify files on a client. The issue, described in the NVD entry, indicates a network-accessible vector with low attack complexity and no authentication req...
CVE-2000-0674
ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. dot dot attack...
CVE-2000-0638
bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. dot dot attack on the HOSTSVC parameter...
CVE-2000-0640
Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. dot dot attack, which provides different error messages depending on whether the file exists or not...
CVE-2000-0577
Netscape Professional Services FTP Server 1.3.6 allows remote attackers to read arbitrary files via a .. dot dot attack...
CVE-2000-0565
SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. dot dot attack...