Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2001-0555

Publish Date: 13 Jun 2001

                							

                source: http://www.securityfocus.com/bid/2868/info

Screaming Media is a provider for custom web content. SiteWare Editor Desktop is the web-based administration tool for managing Screaming Media content.

SiteWare Editor Desktop is prone to directory traversal attacks which can lead to disclosure of arbitrary webserver-readable files on the vulnerable host. This is due to the fact that the software does not filter '../' character sequences from HTTP Requests. 

http://server:port/SWEditServlet?station_path=Z&amp;publication_id=2043&amp;template=../../../../../../../etc/passwd

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

SiteWare 2.5/3.0/3.1 Editor Desktop - Directory Traversal

Vulmon Search

About

Products

Connect