CyberSec.Space Logo
CVEブラウザに戻る

CVE-2000-0664

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.1580%
EPSS Percentile28.24th
Published2000年7月26日
Last Modified2026年4月16日

Vulnerability Description

AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots.

Affected Platforms (CPE)

📦
Analogx

Simpleserver Www

= 1.0.6

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.html
🔗 http://www.analogx.com/contents/download/network/sswww.htm
🔗 http://www.osvdb.org/388
🔗 http://www.securityfocus.com/bid/1508
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/4999
🔗 http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.html
🔗 http://www.analogx.com/contents/download/network/sswww.htm
🔗 http://www.osvdb.org/388

関連する脆弱性情報

CVE-2001-158610.0

Directory traversal vulnerability in SimpleServer:WWW 1.13 and earlier allows remote attackers to execute arbitrary programs via e...

CVE-2000-00117.5

Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request.

CVE-2002-09687.5

Buffer overflow in AnalogX SimpleServer:WWW 1.16 and earlier allows remote attackers to cause a denial of service (crash) and exec...

CVE-2000-02435.0

AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin.