Vulnerabilities > CVE-2002-1133 - Unspecified vulnerability in Funsoft Dinos Webserver 1.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Encoded directory traversal vulnerability in Dino's web server 2.1 allows remote attackers to read arbitrary files via ".." (dot dot) sequences with URL-encoded (1) "/" (%2f") or (2) "\" (%5c) characters.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Packetstorm
data source | https://packetstormsecurity.com/files/download/29741/idefense.dinoweb.txt |
id | PACKETSTORM:29741 |
last seen | 2016-12-05 |
published | 2002-09-24 |
reporter | David Endler |
source | https://packetstormsecurity.com/files/29741/idefense.dinoweb.txt.html |
title | idefense.dinoweb.txt |