Exploitation Summary
CVE-2001-1580 has been observed exploited in the wild (reported by VulnCheck KEV).
Description
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string.
References (5)
Core 5
Core References
Various Sources mailing-list
x_refsource_bugtraq
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0221.html
Various Sources mailing-list
x_refsource_bugtraq
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0218.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/7726
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0204.html
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3715
Scores
EPSS
0.0412
EPSS Percentile
88.8%
Details
VulnCheck KEV
2025-02-27
Status
published
Products (3)
nombas/scriptease_webserver
4.30b
nombas/scriptease_webserver
4.30d
novell/netware
5.1 (2 CPE variants)
Published
Dec 31, 2001
Tracked Since
Feb 18, 2026