← back
CVE-2001-0938

CVE-2001-0938

EPSS 3.2%
Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attackers to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Filename parameter in (1) UploadScript11.asp or (2) DirectoryListing.asp.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=100715294425985&w=2http://www.iss.net/security_center/static/7628.phphttp://www.iss.net/security_center/static/7629.phphttp://www.securityfocus.com/bid/3608