Vulnerabilities > CVE-2002-0331 - Unspecified vulnerability in Alcatech Gmbh BPM Studio PRO 4.2

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

alcatech-gmbh

exploit available

NVD

Published: 2002-06-25

Updated: 2024-11-20

Summary

Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.

Vulnerable Configurations

Part	Description	Count
Application	Alcatech_Gmbh Alcatech Gmbh BPM Studio PRO 4.2	1

Exploit-Db

description	BPM Studio Pro 4.2 HTTPD Directory Traversal Vulnerability. CVE-2002-0331. Remote exploit for windows platform
id	EDB-ID:21311
last seen	2016-02-02
modified	2002-02-27
published	2002-02-27
reporter	UNTER
source	https://www.exploit-db.com/download/21311/
title	BPM Studio Pro 4.2 HTTPD Directory Traversal Vulnerability

References

http://marc.info/?l=bugtraq&m=101486044323352&w=2
http://marc.info/?l=bugtraq&m=101486044323352&w=2
http://www.iss.net/security_center/static/8300.php
http://www.iss.net/security_center/static/8300.php
http://www.securityfocus.com/bid/4198
http://www.securityfocus.com/bid/4198