Vulnerabilities > CVE-2001-0557 - Unspecified vulnerability in T. Hauck Jana web Server 1.0J/1.45/2.0Beta1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN t-hauck
exploit available
Summary
T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | T. Hauck Jana Server 1.45/1.46 Hex Encoded Directory Traversal Vulnerability. CVE-2001-0557. Remote exploit for windows platform |
| id | EDB-ID:20829 |
| last seen | 2016-02-02 |
| modified | 2001-05-07 |
| published | 2001-05-07 |
| reporter | neme-dhc |
| source | https://www.exploit-db.com/download/20829/ |
| title | T. Hauck Jana Server 1.45/1.46 Hex Encoded Directory Traversal Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html
- http://www.kb.cert.org/vuls/id/132099
- http://www.kb.cert.org/vuls/id/132099
- http://www.securityfocus.com/bid/2703
- http://www.securityfocus.com/bid/2703
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6513
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6513