Vulnerabilities > CVE-2001-0452 - Unspecified vulnerability in BRS Webweaver
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN brs
exploit available
Summary
BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the server via a "CD *" command followed by an ls command.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 7 |
Exploit-Db
| description | BRS WebWeaver 0.x FTP Root Path Disclosure Vulnerability. CVE-2001-0452. Remote exploit for windows platform |
| id | EDB-ID:20819 |
| last seen | 2016-02-02 |
| modified | 2001-04-28 |
| published | 2001-04-28 |
| reporter | joetesta |
| source | https://www.exploit-db.com/download/20819/ |
| title | BRS WebWeaver 0.x FTP Root Path Disclosure Vulnerability |
References
- http://members.nbci.com/_XMCM/BSoutham/WebWeaver/WebWeaverHistory.html
- http://members.nbci.com/_XMCM/BSoutham/WebWeaver/WebWeaverHistory.html
- http://www.securityfocus.com/archive/1/180506
- http://www.securityfocus.com/archive/1/180506
- http://www.securityfocus.com/bid/2676
- http://www.securityfocus.com/bid/2676