CVE-2001-1152

EPSS 0.42%
Veröffentlicht 05.09.2001 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including (1) a // (double slash), (2) a /SUBDIR/.. where the desired file is in the parentdir, (3) a /./, or (4) URL-encoded characters.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Baltimore Technologies ≫ Websweeper Version4.02

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.42%	0.587

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.mimesweeper.com/support/technotes/notes/1043.asp

Vendor Advisory

http://www.securityfocus.com/archive/1/212283

Vendor Advisory

http://www.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3296

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2001-1152

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-1152

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-1152

EUVD