Vulnerability Details CVE-2003-0338
Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allows remote attackers to read and execute arbitrary files via .. (dot dot) sequences in HTTP GET or POST requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.3%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2003-0338
-
cpe:2.3:a:wsmp3:wsmp3_daemon:0.0.10
-
cpe:2.3:a:wsmp3:wsmp3_daemon:0.0.8
-
cpe:2.3:a:wsmp3:wsmp3_daemon:0.0.9
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.1
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.2
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.3
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.4
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.5
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.6
-
cpe:2.3:a:wsmp3:wsmp3_web_server:0.0.7