Vulnerabilities > CVE-2001-0452 - Path Disclosure vulnerability in BRS WebWeaver FTP Root
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the server via a "CD *" command followed by an ls command.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |
Exploit-Db
description | BRS WebWeaver 0.x FTP Root Path Disclosure Vulnerability. CVE-2001-0452. Remote exploit for windows platform |
id | EDB-ID:20819 |
last seen | 2016-02-02 |
modified | 2001-04-28 |
published | 2001-04-28 |
reporter | joetesta |
source | https://www.exploit-db.com/download/20819/ |
title | BRS WebWeaver 0.x FTP Root Path Disclosure Vulnerability |