Directory Listing Vulnerability in SmarterTools SmarterStats Web Server
CVE-2011-2156

Currently unrated

Key Information:

Vendor: Smartertools
Status: Smarterstats
Vendor: CVE Published:; 20 May 2011

What is CVE-2011-2156?

The SmarterTools SmarterStats 6.0 web server is susceptible to a vulnerability that allows remote attackers to gain unauthorized access to directory listings. This can occur via direct requests for various critical directories, potentially leading to the exposure of sensitive information stored on the server. Attackers may exploit this vulnerability to map the server's structure, identify resources, and craft further attacks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/67826

vdb-entryx_refsource_XF

http://xss.cx/examples/smarterstats-60-oscommandinjection...

x_refsource_MISC

http://www.kb.cert.org/vuls/id/MORO-8GYQR4

x_refsource_MISC

Timeline

Vulnerability published
May 20, 2011
Vulnerability Reserved
May 20, 2011

Smartertools

What is CVE-2011-2156?

References

Timeline