Directory Traversal Vulnerability in Un-CGI Product by a Vendor
CVE-2001-1242

Currently unrated

Key Information:

Vendor: Steve Grimm
Status: Un-cgi
Vendor: CVE Published:; 17 July 2001

🔔 Create Steve Grimm Vulnerability Alert

What is CVE-2001-1242?

A directory traversal vulnerability exists in Un-CGI 1.9 and earlier versions, which allows remote attackers to gain unauthorized access to the filesystem. By exploiting this flaw using a maliciously crafted HTML form that includes '..' (dot dot) sequences, attackers can execute arbitrary code, potentially leading to severe consequences for affected systems. It is crucial for users of this software to implement security patches and review web application input handling to prevent such exploits.

References

http://archives.neohapsis.com/archives/bugtraq/2001-07/03...

mailing-listx_refsource_BUGTRAQ

http://www.midwinter.com/~koreth/uncgi-changes.html

x_refsource_CONFIRM

http://www.iss.net/security_center/static/6846.php

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 1, 2002
Vulnerability published
Jul 17, 2001