Vulnerabilities > CVE-2005-1365 - Unspecified vulnerability in Pico Server Pico Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN pico-server
exploit available
Summary
Pico Server (pServ) 3.2 and earlier allows remote attackers to execute arbitrary commands via a URL with multiple leading "/" (slash) characters and ".." sequences.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | Pserv 3.2 Directory Traversal Vulnerability. CVE-2005-1365. Remote exploit for linux platform |
| id | EDB-ID:25669 |
| last seen | 2016-02-03 |
| modified | 2005-05-16 |
| published | 2005-05-16 |
| reporter | Claus R. F. Overbeck |
| source | https://www.exploit-db.com/download/25669/ |
| title | pserv 3.2 - Directory Traversal Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/39267/pservBad.txt |
| id | PACKETSTORM:39267 |
| last seen | 2016-12-05 |
| published | 2005-08-14 |
| reporter | tsyklon.informatik.rwth-aachen.de |
| source | https://packetstormsecurity.com/files/39267/pservBad.txt.html |
| title | pservBad.txt |
References
- http://marc.info/?l=full-disclosure&m=111625635716712&w=2
- http://marc.info/?l=full-disclosure&m=111625635716712&w=2
- http://sourceforge.net/project/shownotes.php?release_id=327708
- http://sourceforge.net/project/shownotes.php?release_id=327708
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-010.txt
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-010.txt
- http://www.securityfocus.com/bid/13642
- http://www.securityfocus.com/bid/13642