Vulnerabilities > CVE-2005-1658 - Unspecified vulnerability in Myserver 0.8

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
myserver
nessus
NVD
Published: 2005-05-18
Updated: 2008-09-05

Summary

Directory traversal vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to list the parent directory of the web root via a URL with a "..." (triple dot).

Vulnerable Configurations

Part Description Count
Application
Myserver
1

Nessus

NASL familyCGI abuses
NASL idMYSERVER_DIR_LIST_AND_XSS.NASL
descriptionThe remote host is running MyServer, an open source http server. This version is vulnerable to a directory listing flaw and cross-site scripting. An attacker can execute a cross-site scripting attack, or gain knowledge of certain system information of the server.
last seen2020-06-01
modified2020-06-02
plugin id18218
published2005-05-10
reporterThis script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/18218
titleMyServer 0.8 Multiple Vulnerabilities

References