Vulnerabilities > CVE-2002-1079 - Directory Traversal vulnerability in Aprelium Technologies Abyss web Server 1.0.3P2

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

aprelium-technologies

exploit available

NVD

Published: 2002-10-04

Updated: 2008-09-05

Summary

Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request.

Vulnerable Configurations

Part	Description	Count
Application	Aprelium_Technologies Aprelium Technologies Abyss WEB Server 1.0.3_P2	1

Exploit-Db

description	Abyss Web Server 1.0 Encoded Backslash Directory Traversal Vulnerability. CVE-2002-1079. Remote exploit for windows platform
id	EDB-ID:21735
last seen	2016-02-02
modified	2002-08-22
published	2002-08-22
reporter	Auriemma Luigi
source	https://www.exploit-db.com/download/21735/
title	Abyss Web Server 1.0 Encoded Backslash Directory Traversal Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References