RSS   Vulnerabilities for 'Arcadia internet store'   RSS

2001-09-20
 
CVE-2001-0705

 

 
Directory traversal vulnerability in tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to read arbitrary files on the web server via a URL with "dot dot" sequences in the template argument.

 
 
CVE-2001-0704

 

 
tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to discover the full path to the working directory via a URL with a template argument for a file that does not exist.

 
 
CVE-2001-0703

 

 
tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to cause a denial of service via a URL request with an MS-DOS device name in the template parameter.

 


Copyright 2017, cxsecurity.com