Vulnerabilities > CVE-2001-0453 - Unspecified vulnerability in BRS Webweaver

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

brs

NVD

Published: 2001-06-27

Updated: 2024-11-20

Summary

Directory traversal vulnerability in BRS WebWeaver HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the (1) syshelp, (2) sysimages, or (3) scripts directories.

Vulnerable Configurations

Part	Description	Count
Application	Brs BRS Webweaver 0.50_Beta BRS Webweaver 0.60_Beta BRS Webweaver 0.52_Beta BRS Webweaver 0.51_Beta BRS Webweaver 0.62_Beta BRS Webweaver 0.61_Beta BRS Webweaver 0.49_Beta	7

References

http://archives.neohapsis.com/archives/bugtraq/2001-04/0519.html
http://archives.neohapsis.com/archives/bugtraq/2001-04/0519.html
http://members.nbci.com/_XMCM/BSoutham/WebWeaver/WebWeaverHistory.html
http://members.nbci.com/_XMCM/BSoutham/WebWeaver/WebWeaverHistory.html
http://www.securityfocus.com/bid/2675
http://www.securityfocus.com/bid/2675