Vulnerability Details CVE-2007-0919
Directory traversal vulnerability in Nickolas Grigoriadis Mini Web server (MiniWebsvr) 0.0.6 allows remote attackers to list the directory immediately above the web root via a ..%00 sequence in the URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.066
EPSS Ranking 90.8%
CVSS Severity
CVSS v2 Score 7.8
References
- http://attrition.org/pipermail/vim/2007-February/001315.html
- http://osvdb.org/33513
- http://securityreason.com/securityalert/2248
- http://www.securityfocus.com/archive/1/459829/100/0/threaded
- http://www.securityfocus.com/bid/22523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32451
- http://attrition.org/pipermail/vim/2007-February/001315.html
- http://osvdb.org/33513
- http://securityreason.com/securityalert/2248
- http://www.securityfocus.com/archive/1/459829/100/0/threaded
- http://www.securityfocus.com/bid/22523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32451
Products affected by CVE-2007-0919
-
cpe:2.3:a:nickolas_grigoriadis:mini_web_server:0.0.6