Lucene search
K

9 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

t. hauck jana webserver 1.0/1.45/1.46 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the intended webroot. http...

7.1AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.58 views

CVE-2001-0558

CVE-2001-0558 affects Jana Webserver 2.01 beta 1 and earlier. A remote attacker can cause a denial of service by sending a URL request that includes an MS-DOS device name (e.g., GET /aux HTTP/1.0). Connected sources corroborate the DOS impact via MS-DOS device names; OpenVAS/Nessus references lis...

5CVSS6.5AI score0.07301EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.27 views

CVE-2001-0558

T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name i.e. GET /aux HTTP/1.0...

6.5AI score0.07301EPSS
Exploits1References4
NVD
NVD
added 2001/08/14 4:0 a.m.14 views

CVE-2001-0557

T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' dot dot attack which is URL encoded %2e%2e...

5CVSS6.7AI score0.10532EPSS
Exploits1References4
CVE
CVE
added 2001/07/27 4:0 a.m.57 views

CVE-2001-0557

The connected CERT entry details a directory traversal vulnerability in Jana Server versions 1.4x (Windows) where hex-encoded “..” requests are not properly filtered, allowing remote attackers to view any file within the server’s document root with the Jana process privileges. Impact: arbitrary f...

5CVSS6.7AI score0.10532EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2001/07/27 4:0 a.m.26 views

CVE-2001-0557

T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' dot dot attack which is URL encoded %2e%2e...

6.7AI score0.10532EPSS
Exploits1References4
securityvulns
securityvulns
added 2001/05/14 12:0 a.m.40 views

Advisory for Jana server

Advisory for Jana Webserver Site: http://www.janaserver.de by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0112 /-|=explanation=|- Jana Webserver is well, a webserver. It has a hex-encoded dot dot bug and a denial of service. /-|=who is vulnerable=|- Tested to be...

2AI score
Exploits0
exploitpack
exploitpack
added 1999/10/08 12:0 a.m.13 views

T. Hauck Jana Server 1.01.451.46 - Directory Traversal

T. Hauck Jana Server 1.01.451.46 - Directory Traversal source: https://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/10/08 12:0 a.m.22 views

T. Hauck Jana Server 1.0/1.45/1.46 - Directory Traversal

source: https://www.securityfocus.com/bid/699/info The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the intended webroot. http ://target/./.././.././.././win.ini o...

7.4AI score
Exploits0
Rows per page
Query Builder