CVE-2002-0772

Hosting Controller - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in dsnmanager.asp for Hosting Controller allows remote attackers to read arbitrary files and directories via a .. (dot dot) in the RootName parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by hdlkha · textwebappsasp

https://www.exploit-db.com/exploits/21455

View Code ZIP pw:eip

References (3)

Core 3

Core References

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/9104.php

Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-05/0142.html

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/4759

Scores

EPSS 0.0115

EPSS Percentile 78.7%

Details

Status published

Products (5)

hosting_controller/hosting_controller 1.1

hosting_controller/hosting_controller 1.3

hosting_controller/hosting_controller 1.4

hosting_controller/hosting_controller 1.4.1

hosting_controller/hosting_controller 1.4b

Published Aug 12, 2002

Tracked Since Feb 18, 2026