CVE-2011-0751

Published: Mar 16, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.redteam-pentesting.de/advisories/rt-sa-2011-001

x_refsource_MISC

nostromo-http-command-execution(66103)

vdb-entry

x_refsource_XF

http://www.nazgul.ch/dev_nostromo.html

x_refsource_CONFIRM

46880

vdb-entry

x_refsource_BID

20110315 [RT-SA-2011-001] nostromo nhttpd directory traversal leading to arbitrary command execution

mailing-list

x_refsource_BUGTRAQ

ADV-2011-0674

vdb-entry

x_refsource_VUPEN

71235

vdb-entry

x_refsource_OSVDB

43775

third-party-advisory

x_refsource_SECUNIA

8140

third-party-advisory

x_refsource_SREASON

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-0751

Description

Affected Products

References