Back to search
CVE-2001-0557
Published: Jul 27, 2001
Modified: Aug 8, 2024
PUBLISHED
Description
T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
2703
vdb-entry
x_refsource_BID
20010507 Advisory for Jana server
mailing-list
x_refsource_BUGTRAQ
VU#132099
third-party-advisory
x_refsource_CERT-VN
jana-server-directory-traversal(6513)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now