Vulnerabilities > CVE-2001-1010 - Unspecified vulnerability in Sambar Server 4.4/5.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |
Exploit-Db
description | Sambar Server 4.4/5.0 pagecount File Overwrite Vulnerability. CVE-2001-1010. Remote exploits for multiple platform |
id | EDB-ID:21026 |
last seen | 2016-02-02 |
modified | 2001-07-22 |
published | 2001-07-22 |
reporter | kyprizel |
source | https://www.exploit-db.com/download/21026/ |
title | Sambar Server 4.4/5.0 pagecount File Overwrite Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | SAMBAR_PAGECOUNT.NASL |
description | By default, there is a pagecount script with Sambar Web Server located at http://sambarserver/session/pagecount This counter writes its temporary files in c:\sambardirectory\tmp. It allows to overwrite any files on the filesystem since the |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10711 |
published | 2001-07-29 |
reporter | This script is Copyright (C) 2001-2018 Vincent Renardias |
source | https://www.tenable.com/plugins/nessus/10711 |
title | Sambar Server pagecount CGI Traversal Arbitrary File Overwrite |