Vulnerabilities > CVE-2003-1172 - Directory Traversal vulnerability in Apache Cocoon 2.1/2.1.2/2.2

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

apache

exploit available

NVD

Published: 2003-12-31

Updated: 2017-07-11

Summary

Directory traversal vulnerability in the view-source sample file in Apache Software Foundation Cocoon 2.1 and 2.2 allows remote attackers to access arbitrary files via a .. (dot dot) in the filename parameter.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache Cocoon 2.1 Apache Cocoon 2.1.2 Apache Cocoon 2.2	3

Exploit-Db

description	Apache Cocoon 2.14/2.2 Directory Traversal Vulnerability. CVE-2003-1172. Remote exploits for multiple platform
id	EDB-ID:23282
last seen	2016-02-02
modified	2003-10-24
published	2003-10-24
reporter	Thierry De Leeuw
source	https://www.exploit-db.com/download/23282/
title	apache cocoon 2.14/2.2 - Directory Traversal Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References