CVE-2001-0633

3 documents3 sources

Severity

5.0MEDIUM

EPSS

0.4%

top 38.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Chilisoft

Timeline

PublishedAug 22

Latest updateApr 30

Description

Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebrws.asp'.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDsun/chilisoft3.5.2

Patches

Patch: archives.neohapsis.com ↗Patch: archives.neohapsis.com ↗

🔴Vulnerability Details

GHSA

GHSA-fcgj-gmh5-659g: Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '↗2022-04-30

▶

CVEList

CVE-2001-0633: Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '↗2001-07-27

▶