Vulnerability Details CVE-2002-1546
BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0043.html
- http://www.iss.net/security_center/static/10467.php
- http://www.securityfocus.com/bid/6041
- http://www.securityoffice.net/articles/webweaver/
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0043.html
- http://www.iss.net/security_center/static/10467.php
- http://www.securityfocus.com/bid/6041
- http://www.securityoffice.net/articles/webweaver/