CVE

Id
3744  
CVE No.
CVE-2001-0938  
Status
Candidate  
Description
Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attackers to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Filename parameter in (1) UploadScript11.asp or (2) DirectoryListing.asp.  
Phase
Modified (20050703)  
Votes
MODIFY(1) Frech | NOOP(4) Armstrong, Cole, Foat, Wall  
Comments
Frech> XF:aspupload-upload-directory-traversal(7628) | XF:aspupload-directory-browsing-download(7629)  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
16900 3744 CVE-2001-0938 BUGTRAQ:20011130 Aspupload installs exploitable scripts  View
16901 3744 CVE-2001-0938 URL:http://marc.info/?l=bugtraq&m=100715294425985&w=2  View
16902 3744 CVE-2001-0938 BID:3608  View
16903 3744 CVE-2001-0938 URL:http://www.securityfocus.com/bid/3608  View
16904 3744 CVE-2001-0938 XF:aspupload-upload-directory-traversal(7628)  View
16905 3744 CVE-2001-0938 URL:http://www.iss.net/security_center/static/7628.php  View
16906 3744 CVE-2001-0938 XF:aspupload-directory-browsing-download(7629)  View

Related JVN