返回 CVE 浏览器

CVE-2000-0004

MEDIUM

5.0

CVSS Severity Score

EPSS Score0.0560%

EPSS Percentile27.39th

Published1999年12月1日

Last Modified2026年4月16日

Vulnerability Description

ZBServer Pro allows remote attackers to read source code for executable files by inserting a . (dot) into the URL.

Affected Platforms (CPE)

📦

Zbsoft

Zbserver

= 1.5

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=94606572912422&w=2

🔗 http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9912&L=NTBUGTRAQ&P=R3556

🔗 http://marc.info/?l=bugtraq&m=94606572912422&w=2

🔗 http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9912&L=NTBUGTRAQ&P=R3556

相关漏洞威胁

CVE-2000-000210.0

Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.

CVE-2000-004010.0

glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.

CVE-2000-035310.0

Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded...

CVE-2000-005910.0

PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could al...