CVEブラウザに戻る

CVE-2001-0447

HIGH

7.5

CVSS Severity Score

EPSS Score0.0040%

EPSS Percentile16.77th

Published2001年6月18日

Last Modified2026年4月16日

Vulnerability Description

Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request containing "%2e" (dot dot) characters.

Affected Platforms (CPE)

📦

Software602

602pro Lan Suite

= 2000a_2000.0.1.34

References & Advisories

🔗 http://www.securityfocus.com/archive/1/171418

🔗 http://www.securityfocus.com/bid/2514

🔗 http://www.securityfocus.com/archive/1/171418

🔗 http://www.securityfocus.com/bid/2514

関連する脆弱性情報

CVE-2000-11157.5

Buffer overflow in remote web administration component (webprox.dll) of 602Pro LAN SUITE before 2000.0.1.33 allows remote attacker...

CVE-2007-32037.5

Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to ...

CVE-2004-03376.8

Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML ...

CVE-2002-19285.0

602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or "....