CVE-2001-0871

Published Dec 21, 2001

Last updated 7 years ago

Overview

Description: Directory traversal vulnerability in HTTP server for Alchemy Eye and Alchemy Network Monitor allows remote attackers to execute arbitrary commands via an HTTP request containing (1) a .. in versions 2.0 through 2.6.18, or (2) a DOS device name followed by a .. in versions 2.6.19 through 3.0.10.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C57D4BEB-8A2B-434D-9259-F0D74680583F"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "125F5340-4E2E-4398-92D4-D1596556EC71"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CC27884-242B-408E-BF52-4BAA7230648F"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B35A9CDC-2B00-4463-B003-5DC83D8F741A"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0E5C679-06B1-4FEA-BCFE-384A098A673A"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE5C405F-F6EE-4893-BC33-6541D1968928"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "672B793F-E68D-48E7-89F8-D7CD7B6A3853"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.6.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B816AAB-8EA9-4404-9782-401D5D49F74C"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:2.6.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B091D4AB-C1FE-43BF-AD6A-E4EAC20C2C8B"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E47EAEB3-A164-4763-8B2F-C5DB2610CD27"
          },
          {
            "criteria": "cpe:2.3:a:alchemy_lab:alchemy_eye:3.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "975B14B0-A28C-46B7-9B24-D077486D275F"
          },
          {
            "criteria": "cpe:2.3:a:dek_software:alchemy_network_monitor:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B42DEE5A-9EEF-4735-96B2-51E7FEE4C68C",
            "versionEndIncluding": "3.0.10"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References