CVE-2004-0847

CRITICAL EXPLOITED

ASP.NET - Path Traversal via Backslash Character

Title source: llm

Exploitation Summary

CVE-2004-0847 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including anonymous.

AI-analyzed exploit summary This exploit leverages a URI parsing vulnerability in Microsoft ASP.NET to bypass authentication and access files in secured directories by using malformed backslash characters in the URL path.

Description

The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a (1) "\" (backslash) or (2) "%5C" (encoded backslash), aka "Path Validation Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · textwebappsasp

https://www.exploit-db.com/exploits/24666

View Code ZIP pw:eip

This exploit leverages a URI parsing vulnerability in Microsoft ASP.NET to bypass authentication and access files in secured directories by using malformed backslash characters in the URL path.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Microsoft ASP.NET (versions affected in 2004)

No auth needed

Prerequisites: Access to the target web server · Knowledge of secured directory and file paths

MITRE ATT&CK