CVE-2000-0664
published 2000-07-26CVE-2000-0664: AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
7.71%
93.9th percentile
AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| analogx | simpleserver_www | <= 1.13 | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
| analogx | simpleserver_www | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pgpv-rcv8-q82m: AnalogX SimpleServer:WWW 1
ghsa_unreviewed·2022-04-30
CVE-2000-0664 [MEDIUM] GHSA-pgpv-rcv8-q82m: AnalogX SimpleServer:WWW 1
AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots.
GHSA
GHSA-4j79-c8mg-c35x: Directory traversal vulnerability in SimpleServer:WWW 1
ghsa_unreviewed·2022-04-30·CVSS 5.0
CVE-2001-1586 [MEDIUM] CWE-22 GHSA-4j79-c8mg-c35x: Directory traversal vulnerability in SimpleServer:WWW 1
Directory traversal vulnerability in SimpleServer:WWW 1.13 and earlier allows remote attackers to execute arbitrary programs via encoded ../ ("%2E%2E%2F%") sequences in a request to the cgi-bin/ directory, a different vulnerability than CVE-2000-0664.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.htmlhttp://www.analogx.com/contents/download/network/sswww.htmhttp://www.osvdb.org/388http://www.securityfocus.com/bid/1508https://exchange.xforce.ibmcloud.com/vulnerabilities/4999http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.htmlhttp://www.analogx.com/contents/download/network/sswww.htmhttp://www.osvdb.org/388http://www.securityfocus.com/bid/1508https://exchange.xforce.ibmcloud.com/vulnerabilities/4999
2000-07-26
Published