Vulnerabilities > CVE-2001-1115 - Unspecified vulnerability in Sixhead Six-Webboard 2.01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
generate.cgi in SIX-webboard 2.01 and before allows remote attackers to read arbitrary files via a dot dot (..) in the content parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | SIX-webboard 2.01 File Retrieval Vulnerability. CVE-2001-1115. Remote exploit for cgi platform |
| id | EDB-ID:21068 |
| last seen | 2016-02-02 |
| modified | 2001-08-31 |
| published | 2001-08-31 |
| reporter | Hannibal Lector |
| source | https://www.exploit-db.com/download/21068/ |
| title | SIX-webboard 2.01 File Retrieval Vulnerability |
Nessus
| NASL family | CGI abuses |
| NASL id | SIX_WEBBOARD.NASL |
| description | The version of the |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 10725 |
| published | 2001-08-13 |
| reporter | This script is Copyright (C) 2001-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/10725 |
| title | SIX-webboard generate.cgi 'content' Parameter Traversal Arbitrary File Access |