Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2000-0664

Published: 26/07/2000 Updated: 10/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Simpleserver Www

Vulnerability Summary

AnalogX SimpleServer:WWW 1.06 and previous versions allows remote malicious users to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots.

Vulnerable Product Search on Vulmon Subscribe to Product

analogx simpleserver www 1.0.6

Exploits

Exploit DB: AnalogX SimpleServer:WWW 1.0.6 - Directory Traversal
source: wwwsecurityfocuscom/bid/1508/info Requesting a specially formed url containing encoding (%2E) to SimpleServer 106 and possibley earlier versions, will enable a remote user to gain read access to known files above the SimpleServer directory target/%2E%2E/filename ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/bugtraq/2000-07/0374.htmlhttp://www.analogx.com/contents/download/network/sswww.htmhttp://www.securityfocus.com/bid/1508http://www.osvdb.org/388https://exchange.xforce.ibmcloud.com/vulnerabilities/4999https://nvd.nist.govhttps://www.exploit-db.com/exploits/20103/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook