Vulnerabilities > CVE-2001-0626 - Unspecified vulnerability in Oreilly Website Professional
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN oreilly
exploit available
Summary
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | OReilly Software WebSite Professional 2.5.4 Directory Disclosure Vulnerability. CVE-2001-0626. Remote exploit for windows platform |
| id | EDB-ID:20687 |
| last seen | 2016-02-02 |
| modified | 2001-03-16 |
| published | 2001-03-16 |
| reporter | Roberto Moreno |
| source | https://www.exploit-db.com/download/20687/ |
| title | OReilly Software WebSite Professional 2.5.4 - Directory Disclosure Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0236.html
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0236.html
- http://www.securityfocus.com/bid/2488
- http://www.securityfocus.com/bid/2488
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3839
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3839