← back
CVE-2002-1744

CVE-2002-1744

EPSS 63.6%
Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot).
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21385unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://online.securityfocus.com/archive/1/267945http://online.securityfocus.com/archive/1/268065https://exchange.xforce.ibmcloud.com/vulnerabilities/8853http://www.securityfocus.com/bid/4525