Lucene search

MitreCVE-2001-0571

HistoryAug 22, 2001 - 4:00 a.m.

CVE-2001-0571

2001-08-2204:00:00

mitre

web.nvd.nist.gov

cve-2001-0571

directory traversal vulnerability

elron

internet manager message inspector

anti-virus

version 3.0.4

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Inspector and (2) Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a … (dot dot) in the requested URL.

Affected configurations

Nvd

Node

elronim_anti_virusMatch3.0.3

elronim_message_inspectorMatch3.0.3

VendorProductVersionCPE
elronim_anti_virus3.0.3cpe:2.3:a:elron:im_anti_virus:3.0.3:*:*:*:*:*:*:*
elronim_message_inspector3.0.3cpe:2.3:a:elron:im_message_inspector:3.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
elron	im_anti_virus	3.0.3	cpe:2.3:a:elron:im_anti_virus:3.0.3:::::::*
elron	im_message_inspector	3.0.3	cpe:2.3:a:elron:im_message_inspector:3.0.3:::::::*

References

archives.neohapsis.com/archives/bugtraq/2001-03/0382.html

marc.info/?l=bugtraq&m=98538867727489&w=2

marc.info/?l=bugtraq&m=98567864203963&w=2

www.securityfocus.com/bid/2519

www.securityfocus.com/bid/2520

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Related for CVE-2001-0571