CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
89.7%
Directory traversal vulnerability in SimpleServer:WWW 1.13 and earlier allows remote attackers to execute arbitrary programs via encoded …/ (“%2E%2E%2F%”) sequences in a request to the cgi-bin/ directory, a different vulnerability than CVE-2000-0664.
Vendor | Product | Version | CPE |
---|---|---|---|
analogx | simpleserver_www | * | cpe:2.3:a:analogx:simpleserver_www:*:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.0.8 | cpe:2.3:a:analogx:simpleserver_www:1.0.8:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.01 | cpe:2.3:a:analogx:simpleserver_www:1.01:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.03 | cpe:2.3:a:analogx:simpleserver_www:1.03:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.04 | cpe:2.3:a:analogx:simpleserver_www:1.04:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.05 | cpe:2.3:a:analogx:simpleserver_www:1.05:*:*:*:*:*:*:* |
analogx | simpleserver_www | 1.06 | cpe:2.3:a:analogx:simpleserver_www:1.06:*:*:*:*:*:*:* |