AspUpload Multiple Script File Upload / Directory Traversal

High Nessus Network Monitor Plugin ID 1714

Synopsis

The AspUpload software resides on this server.

Description

The AspUpload software resides on this server. Some versions of this software are vulnerable to remote exploit.

Solution

No solution is known at this time.

See Also

http://marc.info/?l=bugtraq&m=100715294425985&w=2

http://www.aspupload.com

Plugin Details

Severity: High

ID: 1714

Family: Web Servers

Published: 2004/08/20

Modified: 2016/01/15

Dependencies: 1442

Nessus ID: 11746

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

CVSSv3

Base Score: 7.3

Temporal Score: 7.3

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:H/RL:U/RC:X

Reference Information

CVE: CVE-2001-0938

BID: 3608