Vulnerabilities > CVE-2004-0061 - Security Bypass vulnerability in WWW File Share Pro

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

lionmax-software

NVD

Published: 2004-02-17

Updated: 2016-10-18

Summary

WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.

Vulnerable Configurations

Part	Description	Count
Application	Lionmax_Software Lionmax Software WWW File Share PRO *	1

References

http://marc.info/?l=bugtraq&m=107411794303201&w=2
http://www.securitytracker.com/id?1008779