Vulnerabilities > CVE-2001-1266 - Directory Traversal vulnerability in Doug Neal Dnhttpd 0.4.1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
doug-neal
NVD
Published: 2001-07-03
Updated: 2008-09-05

Summary

Directory traversal vulnerability in Doug Neal's HTTPD Daemon (DNHTTPD) before 0.4.1 allows remote attackers to view arbitrary files via a .. (dot dot) attack using the dot hex code '%2E'.

Vulnerable Configurations

Part Description Count
Application
Doug_Neal
1

References