Vulnerabilities > CVE-2002-1081 - Unspecified vulnerability in Aprelium Technologies Abyss web Server 1.0/1.0.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0229.html
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0229.html
- http://www.aprelium.com/news/patch1033.html
- http://www.aprelium.com/news/patch1033.html
- http://www.iss.net/security_center/static/9956.php
- http://www.iss.net/security_center/static/9956.php
- http://www.osvdb.org/3286
- http://www.osvdb.org/3286
- http://www.securityfocus.com/bid/5549
- http://www.securityfocus.com/bid/5549