Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attackers to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Filename parameter in (1) UploadScript11.asp or (2) DirectoryListing.asp.
Max CVSS
6.4
EPSS Score
0.40%
Published
2001-11-30
Updated
2016-10-18
Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument in the HTTP request.
Max CVSS
10.0
EPSS Score
1.58%
Published
1999-07-20
Updated
2017-10-10
2 vulnerabilities found