CyberSec.Space Logo
Back to CVE Browser

CVE-2001-0966

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1630%
EPSS Percentile14.18th
PublishedAug 31, 2001
Last ModifiedApr 16, 2026

Vulnerability Description

Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the CD (CWD) command.

Affected Platforms (CPE)

πŸ“¦
Nudester.org

Nudester

<= 1.10

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-08/0232.html
πŸ”— http://www.securityfocus.com/bid/3202
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-08/0232.html
πŸ”— http://www.securityfocus.com/bid/3202

Related Vulnerabilities

CVE-2001-003210.0

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privil...

CVE-2001-007610.0

register.cgi in Ikonboard 2.1.7b and earlier allows remote attackers to execute arbitrary commands via the SEND_MAIL parameter, wh...

CVE-2001-002110.0

MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate...

CVE-2001-009810.0

Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begi...