neme-dhc

8 exploits Active since Jun 2001
CVE-2001-0557 EXPLOITDB text WRITEUP
Jana Webserver <1.46 - Info Disclosure
T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
CVE-2001-0574 EXPLOITDB text WRITEUP
Jason Rahaim Mp3mystic - Path Traversal
Directory traversal vulnerability in MP3Mystic prior to 1.04b3 allows a remote attacker to download arbitrary files via a '..' (dot dot) in the URL.
CVE-2001-0558 EXPLOITDB text WRITEUP
T. Hauck Jana Web Server - Denial of Service
T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0).
CVE-2001-0462 EXPLOITDB text WRITEUP
Spencer Christensen Perl Web Server - Path Traversal
Directory traversal vulnerability in Perl web server 0.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
CVE-2001-0580 EXPLOITDB perl WORKING POC
Hughes Technologies Dsl Vdns - Denial of Service
Hughes Technologies Virtual DNS (VDNS) Server 1.0 allows a remote attacker to create a denial of service by connecting to port 6070, sending some data, and closing the connection.
CVE-2001-0561 EXPLOITDB text WRITEUP
Drummond Miles A1stats < 1.6 - Path Traversal
Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1disp4.cgi.
CVE-2001-0561 EXPLOITDB text WRITEUP
Drummond Miles A1stats < 1.6 - Path Traversal
Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1disp4.cgi.
CVE-2001-0561 EXPLOITDB text WRITEUP
Drummond Miles A1stats < 1.6 - Path Traversal
Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1disp4.cgi.