Vulnerabilities > CVE-2001-0038 - Unspecified vulnerability in Metaproducts Offline Explorer

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
metaproducts
exploit available
NVD
Published: 2001-02-16
Updated: 2017-12-19

Summary

Offline Explorer 1.4 before Service Release 2 allows remote attackers to read arbitrary files by specifying the drive letter (e.g. C:) in the requested URL.

Vulnerable Configurations

Part Description Count
Application
Metaproducts
4

Exploit-Db

descriptionMetaProducts Offline Explorer 1.x File System Disclosure Vulnerability. CVE-2001-0038 . Remote exploit for windows platform
idEDB-ID:20488
last seen2016-02-02
modified2000-12-07
published2000-12-07
reporterDodger
sourcehttps://www.exploit-db.com/download/20488/
titleMetaProducts Offline Explorer 1.x File System Disclosure Vulnerability

References