Back to search
CVE-2001-0523
Published: Jul 27, 2001
Modified: Aug 8, 2024
PUBLISHED
Description
eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacker to use restricted variables and perform directory traversal attacks on vulnerable programs that would otherwise be protected.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20010519 RE: ASLabs-2001-01: Multiple Security Problems in eEye SecureIIS
mailing-list
x_refsource_BUGTRAQ
eeye-secureiis-directory-traversal(6564)
vdb-entry
x_refsource_XF
20010518 ASLabs-2001-01: Multiple Security Problems in eEye SecureIIS
mailing-list
x_refsource_BUGTRAQ
eeye-secureiis-bypass-detection(6563)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now