vqSoft vqServer program allows remote attackers to read arbitrary files via a /........../ in the URL, a variation of a .. (dot dot) attack.
References
Link | Resource |
---|---|
http://www.osvdb.org/270 | |
http://www.securityfocus.com/bid/1067 | Exploit Patch Vendor Advisory |
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4.1.20000321084646.0095c7f0%40olga.swip.net | |
http://www.vqsoft.com/vq/server/faqs/dotdotbug.html | URL Repurposed |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2000-10-13T04:00:00
Updated: 2004-09-02T09:00:00
Reserved: 2000-04-12T00:00:00
Link: CVE-2000-0240
JSON object: View
NVD Information
Status : Modified
Published: 2000-03-21T05:00:00.000
Modified: 2024-02-14T01:17:43.863
Link: CVE-2000-0240
JSON object: View
Redhat Information
No data.
CWE