← back
CVE-2002-0934

CVE-2002-0934

EPSS 2.0%
Directory traversal vulnerability in Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) allows remote attackers to read or modify arbitrary files via an illegal character in the middle of a .. (dot dot) sequence in the parameters (1) _browser_out or (2) _out_file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-06/0068.htmlhttp://www.iss.net/security_center/static/9325.phphttp://www.securityfocus.com/bid/4983