Vulnerabilities > CVE-2004-1887 - Remote Directory Listing vulnerability in ADA Imgsvr 0.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null).
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description ADA IMGSVR 0.4 Remote File Download Vulnerability. CVE-2004-1887. Remote exploit for windows platform id EDB-ID:23906 last seen 2016-02-02 modified 2004-04-01 published 2004-04-01 reporter Donato Ferrante source https://www.exploit-db.com/download/23906/ title ADA IMGSVR 0.4 - Remote File Download Vulnerability description ADA IMGSVR 0.4 Remote Directory Listing Vulnerability. CVE-2004-1887 . Remote exploit for windows platform id EDB-ID:23905 last seen 2016-02-02 modified 2004-04-01 published 2004-04-01 reporter Donato Ferrante & Dr_insane source https://www.exploit-db.com/download/23905/ title ADA IMGSVR 0.4 - Remote Directory Listing Vulnerability
References
- http://marc.info/?l=bugtraq&m=108083813528255&w=2
- http://secunia.com/advisories/11277
- http://sourceforge.net/project/shownotes.php?release_id=230023
- http://www.autistici.org/fdonato/advisory/imgSvr0.4-adv.txt
- http://www.securityfocus.com/bid/10026
- http://www.securityfocus.com/bid/10027
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15706