Aspen Sever Directory Traversal Vulnerability Network Vulnerability

Summary

This host is running Aspen Server and is prone to directory traversal vulnerability.

Impact

Successful exploitation will allow attackers to perform directory traversal attacks and read arbitrary files on the affected application. Impact Level: Application

Solution

Upgrade to Aspen Server 0.22 or later, For updates refer to http://aspen.io

Insight

The flaw is due to the program not properly sanitizing user supplied input.

Affected

Aspen Server version 0.8 and prior

References

http://osvdb.org/91895
http://packetstormsecurity.com/files/121035
http://www.exploit-db.com/exploits/24915

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-2619

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

IBM WebSphere Application Multiple Vulnerabilities Jul-11
Check for IIS .cnf file leakage
Cherokee Web Server Malformed Packet Remote Denial of Service Vulnerability
IBM WebSphere Application Server 'plugin-key.kdb' Information Disclosure Vulnerability
JServ Cross Site Scripting

Take action and discover your vulnerabilities