ID SECURITYVULNS:VULN:1810
Type securityvulns
Reporter BUGTRAQ
Modified 2002-04-22T00:00:00
Description
By using ./ and ../ it's possible to access any files.
{"id": "SECURITYVULNS:VULN:1810", "bulletinFamily": "software", "title": "Protected files access in LilHTTP", "description": "By using ./ and ../ it's possible to access any files.", "published": "2002-04-22T00:00:00", "modified": "2002-04-22T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:1810", "reporter": "BUGTRAQ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:2820", "https://vulners.com/securityvulns/securityvulns:doc:2822", "https://vulners.com/securityvulns/securityvulns:doc:2538"], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:09:16", "edition": 1, "viewCount": 2, "enchantments": {"score": {"value": 3.7, "vector": "NONE", "modified": "2018-08-31T11:09:16", "rev": 2}, "dependencies": {"references": [{"type": "nessus", "idList": ["EULEROS_SA-2020-1498.NASL", "EULEROS_SA-2020-1457.NASL", "EULEROS_SA-2020-1496.NASL", "EULEROS_SA-2020-1477.NASL", "EULEROS_SA-2020-1491.NASL", "EULEROS_SA-2020-1494.NASL", "EULEROS_SA-2020-1483.NASL", "EULEROS_SA-2020-1489.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562311220201494", "OPENVAS:1361412562311220201489", "OPENVAS:1361412562311220201457", "OPENVAS:1361412562311220201446", "OPENVAS:1361412562311220201477", "OPENVAS:1361412562311220201400", "OPENVAS:1361412562311220201491", "OPENVAS:1361412562311220201476", "OPENVAS:1361412562311220201430", "OPENVAS:1361412562311220201473"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:2822", "SECURITYVULNS:DOC:2538", "SECURITYVULNS:DOC:2820"]}], "modified": "2018-08-31T11:09:16", "rev": 2}, "vulnersScore": 3.7}, "affectedSoftware": [{"name": "LilHTTP", "operator": "eq", "version": "2.1"}]}
{"rst": [{"lastseen": "2021-02-27T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **79[.]196.87.244** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **13**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-02-27T03:00:00.\n IOC tags: **generic**.\nASN 3320: (First IP 79.192.0.0, Last IP 79.255.255.255).\nASN Name \"DTAG\" and Organisation \"Internet service provider operations\".\nASN hosts 445951 domains.\nGEO IP information: City \"Elsenfeld\", Country \"Germany\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:42B9AEC4-1810-3128-A8C5-BF9FD48F786E", "href": "", "published": "2021-02-28T00:00:00", "title": "RST Threat feed. IOC: 79.196.87.244", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-27T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **customersus[.]com** in [RST Threat Feed](https://rstcloud.net/profeed) with score **2**.\n First seen: 2019-12-15T03:00:00, Last seen: 2021-02-27T03:00:00.\n IOC tags: **spam**.\nDomain has DNS A records: 99[.]83.230.40\nWhois:\n Created: 2020-05-07 01:28:15, \n Registrar: Alibaba Cloud Computing Beijing Co Ltd, \n Registrant: unknown.\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-12-15T00:00:00", "id": "RST:6F58B253-1810-3698-843D-76F4EE178FEE", "href": "", "published": "2021-02-28T00:00:00", "title": "RST Threat feed. IOC: customersus.com", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-27T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **shoiplijfter[.]tk** in [RST Threat Feed](https://rstcloud.net/profeed) with score **2**.\n First seen: 2019-12-15T03:00:00, Last seen: 2021-02-27T03:00:00.\n IOC tags: **spam**.\nDomain has DNS A records: 23[.]200.237.225,23.60.91.225\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-12-15T00:00:00", "id": "RST:FC6A6C79-1810-3CD4-8870-5DFA2EDFED03", "href": "", "published": "2021-02-28T00:00:00", "title": "RST Threat feed. IOC: shoiplijfter.tk", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **ip-1810-1217-650lev-hoy[.]com.ni.publicnode.ydns.eu** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2021-01-17T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **cryptomining**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-01-17T00:00:00", "id": "RST:7A2AB83E-D375-32CC-807A-03A0119B8907", "href": "", "published": "2021-02-24T00:00:00", "title": "RST Threat feed. IOC: ip-1810-1217-650lev-hoy.com.ni.publicnode.ydns.eu", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **b2g[.]abseits.ski** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2020-08-04T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **cryptomining**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-08-04T00:00:00", "id": "RST:EAB881CA-1810-3F7B-8DC2-854238F785E7", "href": "", "published": "2021-02-24T00:00:00", "title": "RST Threat feed. IOC: b2g.abseits.ski", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-24T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **cerium[.]us.bitcoin.com** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2021-02-24T03:00:00, Last seen: 2021-02-24T03:00:00.\n IOC tags: **cryptomining**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-24T00:00:00", "id": "RST:F0EDB4C9-1810-32EF-943F-70A54B6B3166", "href": "", "published": "2021-02-24T00:00:00", "title": "RST Threat feed. IOC: cerium.us.bitcoin.com", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **api-9[.]api.nanopool.org** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2021-01-17T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **cryptomining**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-01-17T00:00:00", "id": "RST:1745DA8B-1810-3E4B-B9CB-3C7E036869AE", "href": "", "published": "2021-02-24T00:00:00", "title": "RST Threat feed. IOC: api-9.api.nanopool.org", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-23T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **0[.]0.0.0 pdc.api.nanopool.org** in [RST Threat Feed](https://rstcloud.net/profeed) with score **20**.\n First seen: 2021-02-23T03:00:00, Last seen: 2021-02-23T03:00:00.\n IOC tags: **cryptomining**.\nWhois:\n Created: 2015-08-18 08:30:17, \n Registrar: unknown, \n Registrant: unknown.\nIOC could be a **False Positive** (Domain not resolved, but Whois records found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-23T00:00:00", "id": "RST:CF10DD7B-1810-3AD7-925B-79AC6ED22673", "href": "", "published": "2021-02-23T00:00:00", "title": "RST Threat feed. IOC: 0.0.0.0 pdc.api.nanopool.org", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-23T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **0[.]0.0.0 ip-1810-1217-650lev-hoy.com.ni.publicnode.ydns.eu** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2021-02-23T03:00:00, Last seen: 2021-02-23T03:00:00.\n IOC tags: **cryptomining**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-23T00:00:00", "id": "RST:5B0F4308-557D-30EB-8D3E-24A9D5474893", "href": "", "published": "2021-02-23T00:00:00", "title": "RST Threat feed. IOC: 0.0.0.0 ip-1810-1217-650lev-hoy.com.ni.publicnode.ydns.eu", "type": "rst", "cvss": {}}, {"lastseen": "2021-02-21T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **34[.]123.125.116** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2021-02-15T03:00:00, Last seen: 2021-02-21T03:00:00.\n IOC tags: **shellprobe**.\nASN 15169: (First IP 34.116.16.0, Last IP 34.191.255.255).\nASN Name \"GOOGLE\" and Organisation \"Google LLC\".\nASN hosts 51782915 domains.\nGEO IP information: City \"Council Bluffs\", Country \"United States\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-02-15T00:00:00", "id": "RST:C213497E-1810-33B9-8ACE-125B7699053F", "href": "", "published": "2021-02-22T00:00:00", "title": "RST Threat feed. IOC: 34.123.125.116", "type": "rst", "cvss": {}}]}
