Arbitrary File and Directory Manipulation Vulnerability in imp_rootdir.asp

CVE-2002-0773 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

imp_rootdir.asp for Hosting Controller allows remote attackers to copy or delete arbitrary files and directories via a direct request to imp_rootdir.asp and modifying parameters such as (1) ftp, (2) owwwPath, and (3) oftpPath.

Learn more about our Web Application Penetration Testing UK.