Vulnerability Details CVE-2001-1580
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.226
EPSS Ranking 95.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0204.html
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0218.html
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0221.html
- http://www.securityfocus.com/bid/3715
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7726
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0204.html
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0218.html
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0221.html
- http://www.securityfocus.com/bid/3715
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7726
Products affected by CVE-2001-1580
-
cpe:2.3:a:nombas:scriptease_webserver:4.30b
-
cpe:2.3:a:nombas:scriptease_webserver:4.30d
-
cpe:2.3:o:novell:netware:5.1