Vulnerabilities > CVE-2001-0557 - Directory Traversal vulnerability in T. Hauck Jana web Server 1.0J/1.45/2.0Beta1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
t-hauck
exploit available
NVD
Published: 2001-08-14
Updated: 2017-12-19

Summary

T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).

Vulnerable Configurations

Part Description Count
Application
T._Hauck
4

Exploit-Db

descriptionT. Hauck Jana Server 1.45/1.46 Hex Encoded Directory Traversal Vulnerability. CVE-2001-0557. Remote exploit for windows platform
idEDB-ID:20829
last seen2016-02-02
modified2001-05-07
published2001-05-07
reporterneme-dhc
sourcehttps://www.exploit-db.com/download/20829/
titleT. Hauck Jana Server 1.45/1.46 Hex Encoded Directory Traversal Vulnerability

References