CVE-2000-0664 Information

Description

AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the 2E URL encoding for the dots.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.html http://www.analogx.com/contents/download/network/sswww.htm http://www.osvdb.org/388 http://www.securityfocus.com/bid/1508 https://exchange.xforce.ibmcloud.com/vulnerabilities/4999