3 matches found
CVE-2002-1353
Affected software : LocalWEB2000 HTTP server 2.1.0. Vulnerability : Passwords are stored in plain text under the web document root in the file users.lst, enabling remote access to passwords via a direct request to users.lst. Impact : Confidentiality of passwords is partially compromised as inform...
CVE-2002-0897
CVE-2002-0897 affects LocalWeb2000 web server (version 2.1.0 and earlier). The vulnerability allows remote attackers to bypass access restrictions and view restricted files by using a URL containing the "/./" directory. Connected sources also reference multiple remote vulnerabilities for LocalWeb...
CVE-2001-0189
CVE-2001-0189 is confirmed via connected sources as a LocalWeb2000 vulnerability. Affected product: LocalWeb2000 (notably version 2.1.0). Issue: directory traversal allowing remote attackers to read protected files through a dot-dot (.. ) sequence in HTTP GET requests, potentially revealing file ...