CyberSec.Space Logo
返回 CVE 浏览器

CVE-2002-1864

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0730%
EPSS Percentile22.81th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request.

Affected Platforms (CPE)

📦
Sws

Sws Simple Web Server

= 0.0.3
📦
Sws

Sws Simple Web Server

= 0.0.4
📦
Sws

Sws Simple Web Server

= 0.1.0
📦
Sws

Sws Simple Web Server

= 0.1.1

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10070.php
🔗 http://www.securityfocus.com/bid/5662
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0047.html
🔗 http://www.iss.net/security_center/static/10070.php
🔗 http://www.securityfocus.com/bid/5662

相关漏洞威胁

CVE-2002-18707.5

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote att...

CVE-2002-18665.0

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attac...

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...