Vulnerability Details CVE-2002-2416
Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL GET request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.048
EPSS Ranking 89.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0083.html
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00306.html
- http://www.iss.net/security_center/static/10672.php
- http://www.securityfocus.com/bid/6308
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0083.html
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00306.html
- http://www.iss.net/security_center/static/10672.php
- http://www.securityfocus.com/bid/6308
Products affected by CVE-2002-2416
-
cpe:2.3:a:zeroo:http_server:1.5