CVE-2001-1010
Sambar Server - Unauthenticated Arbitrary File Write via Pagecount CGI Script
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-1010. PoCs published by kyprizel.
AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Sambar Server's 'pagecount' script, allowing remote attackers to overwrite arbitrary files on the system. The PoC shows how crafted HTTP requests can corrupt critical files like 'autoexec.bat'.
Description
Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter.
Exploits (1)
This exploit demonstrates a directory traversal vulnerability in Sambar Server's 'pagecount' script, allowing remote attackers to overwrite arbitrary files on the system. The PoC shows how crafted HTTP requests can corrupt critical files like 'autoexec.bat'.