CVE-2001-0571

Elron Internet Manager Message Inspector and Anti-Virus - Directory Traversal via URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0571. PoCs published by Erik Tayler.

AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Elron IM Anti-Virus, allowing attackers to access files outside the intended directory via '/../' sequences in the URL path. The example provided demonstrates accessing 'boot.ini' by traversing directories.

Description

Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Inspector and (2) Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the requested URL.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Erik Tayler · textremotewindows
https://www.exploit-db.com/exploits/20717

The exploit describes a directory traversal vulnerability in Elron IM Anti-Virus, allowing attackers to access files outside the intended directory via '/../' sequences in the URL path. The example provided demonstrates accessing 'boot.ini' by traversing directories.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Elron IM Anti-Virus (non-current versions)
No auth needed
Prerequisites: Network access to the target's web server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2520
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2519
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98538867727489&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98567864203963&w=2
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-03/0382.html

Scores

EPSS 0.0834
EPSS Percentile 94.3%

Details

Status published
Products (2)
elron/im_anti_virus 3.0.3
elron/im_message_inspector 3.0.3
Published Aug 22, 2001
Tracked Since Feb 18, 2026