Vulnerabilities > CVE-2002-0772 - Directory Traversal vulnerability in Hosting Controller DSNManager

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

hosting-controller

exploit available

NVD

Published: 2002-08-12

Updated: 2008-09-05

Summary

Directory traversal vulnerability in dsnmanager.asp for Hosting Controller allows remote attackers to read arbitrary files and directories via a .. (dot dot) in the RootName parameter.

Vulnerable Configurations

Part	Description	Count
Application	Hosting_Controller Hosting Controller Hosting Controller 1.1 Hosting Controller Hosting Controller 1.3 Hosting Controller Hosting Controller 1.4 Hosting Controller Hosting Controller 1.4.1 Hosting Controller Hosting Controller 1.4B	5

Exploit-Db

description	Hosting Controller 1.x DSNManager Directory Traversal Vulnerability. CVE-2002-0772 . Webapps exploit for asp platform
id	EDB-ID:21455
last seen	2016-02-02
modified	2002-05-17
published	2002-05-17
reporter	hdlkha
source	https://www.exploit-db.com/download/21455/
title	Hosting Controller 1.x DSNManager Directory Traversal Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References