Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Ada Image Server (ImgSvr) 0.4 allows remote malicious users to view directories or download files via an HTTP request with a trailing %00 (null).

Vulnerable Product	Search on Vulmon	Subscribe to Product
ada imgsvr 0.4

source: wwwsecurityfocuscom/bid/10027/info A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the retrieve arbitrary files from the web server root directory and any subdirectories therein An attacker may leverage this issue to gain access to arbitrary scripts contained within the server root ...

source: wwwsecurityfocuscom/bid/10026/info A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the disclose root directory listings This issue has also been reported to allow for listing of directories that reside outside the server root as well An attacker may leverage this issue to gain acc ...

NVD-CWE-Other http://www.autistici.org/fdonato/advisory/imgSvr0.4-adv.txt http://sourceforge.net/project/shownotes.php?release_id=230023 http://www.securityfocus.com/bid/10026 http://www.securityfocus.com/bid/10027 http://secunia.com/advisories/11277 http://marc.info/?l=bugtraq&m=108083813528255&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15706 https://nvd.nist.gov https://www.exploit-db.com/exploits/23906/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1887

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect