Vulnerabilities

CVE-2001-0523

by Fred · 27/07/2001

eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacker to use restricted variables and perform directory traversal attacks on vulnerable programs that would otherwise be protected.

Date published : 2001-07-27

http://archives.neohapsis.com/archives/bugtraq/2001-05/0185.html

http://archives.neohapsis.com/archives/bugtraq/2001-05/0197.html

Similar

Tags: Cybersecurity Alert