ID CVE-2001-0304
Summary Directory traversal vulnerability in Caucho Resin 1.2.2 allows remote attackers to read arbitrary files via a "\.." (dot dot) in a URL request.
References
Vulnerable Configurations
  • cpe:2.3:a:caucho_technology:resin:1.2.2
    cpe:2.3:a:caucho_technology:resin:1.2.2
CVSS
Base: 5.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
exploit-db via4
description Caucho Technology Resin 1.2 Directory Traversal Vulnerability. CVE-2001-0304. Remote exploits for multiple platform
id EDB-ID:20635
last seen 2016-02-02
modified 2001-02-16
published 2001-02-16
reporter joetesta
source https://www.exploit-db.com/download/20635/
title caucho technology resin 1.2 - Directory Traversal Vulnerability
nessus via4
NASL family Web Servers
NASL id RESIN_TRAVERSAL.NASL
description It is possible to read arbitrary files on the remote server by prepending /\../\../ to the file name.
last seen 2019-01-16
modified 2018-07-27
plugin id 10656
published 2001-04-17
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10656
title Resin Traversal Arbitrary File Access
refmap via4
bid 2384
bugtraq 20010216 Vulnerability in Resin Webserver
Last major update 17-10-2016 - 22:10
Published 03-05-2001 - 00:00
Back to Top