Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1414 | Path Traversal vulnerability in Apple products Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... | 4.3 |
2003-12-31 | CVE-2003-1413 | Path Traversal vulnerability in Apple products parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages. | 4.3 |
2003-12-31 | CVE-2003-1380 | Path Traversal vulnerability in Bisonftp Server 4 R2 Directory traversal vulnerability in BisonFTP Server 4 release 2 allows remote attackers to (1) list directories above the root via an 'ls @../' command, or (2) list files above the root via a "mget @../FILE" command. | 7.5 |
2003-12-31 | CVE-2003-1373 | Path Traversal vulnerability in PHPbb Group PHPbb Directory traversal vulnerability in auth.php for PhpBB 1.4.0 through 1.4.4 allows remote attackers to read and include arbitrary files via .. | 6.8 |
2003-12-31 | CVE-2003-1351 | Path Traversal vulnerability in Greg Billock Edittag 1.1 Directory traversal vulnerability in edittag.cgi in EditTag 1.1 allows remote attackers to read arbitrary files via a "%2F.." (encoded slash dot dot) in the file parameter. | 5.0 |
2003-12-31 | CVE-2003-1349 | Path Traversal vulnerability in Thomas Krebs Niteserver Ftpd 1.83 Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote attackers to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command. | 5.0 |
2003-12-31 | CVE-2003-1345 | Path Traversal vulnerability in Follett Software Webcollection Plus 5.00 Directory traversal vulnerability in s.dll in WebCollection Plus 5.00 allows remote attackers to view arbitrary files in c:\ via a full pathname in the d parameter. | 5.0 |
2003-12-31 | CVE-2003-1335 | Path Traversal vulnerability in KAI Blankenhorn Bitfolge Simple and Nice Index File Directory traversal vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.5 allows remote attackers to download files from locations above the snif directory. | 5.0 |
2002-12-31 | CVE-2002-2416 | Path Traversal vulnerability in Zeroo Http Server 1.5 Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2403 | Path Traversal vulnerability in KEY Focus KF web Server 1.0.8 Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences. | 5.0 |