Description

Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot).

Remediation

References

CVE-2002-1744

Related Vulnerabilities

WordPress Plugin ManageWP Worker Unspecified Vulnerability (4.1.7)

Magento Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-8156)

WordPress Plugin Active Directory Integration/LDAP Integration Unspecified Vulnerability (3.6.95)

Oracle Application Server CVE-2010-0066 Vulnerability (CVE-2010-0066)

WordPress Plugin Super Refer A Friend Information Disclosure (1.0)

Severity

Medium

Classification

CVE-2002-1744

Tags

Missing Update Known Vulnerabilities