CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1864

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0730%
EPSS Percentile22.81th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request.

Affected Platforms (CPE)

📦
Sws

Sws Simple Web Server

= 0.0.3
📦
Sws

Sws Simple Web Server

= 0.0.4
📦
Sws

Sws Simple Web Server

= 0.1.0
📦
Sws

Sws Simple Web Server

= 0.1.1

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10070.php
🔗 http://www.securityfocus.com/bid/5662
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10070.php
🔗 http://www.securityfocus.com/bid/5662

関連する脆弱性情報

CVE-2002-18707.5

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote att...

CVE-2002-18665.0

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attac...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...