CVE-2001-0784 | Vulnerability Database | Aqua Security

Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.

Affected Software

Name	Vendor	Start Version	End Version
Icecast	Icecast	*	1.310 (including)
Icecast	Icecast	1.3.7 (including)	1.3.7 (including)
Icecast	Icecast	1.3.8_beta2 (including)	1.3.8_beta2 (including)
Red Hat Powertools 7.0	RedHat		*
Red Hat Powertools 7.1	RedHat		*

References

http://archives.neohapsis.com/archives/bugtraq/2001-06/0353.html
http://www.debian.org/security/2001/dsa-089
http://www.osvdb.org/1883
http://www.redhat.com/support/errata/RHSA-2001-105.html
http://www.redhat.com/support/errata/RHSA-2002-063.html
http://www.securityfocus.com/bid/2932
https://exchange.xforce.ibmcloud.com/vulnerabilities/6752
http://archives.neohapsis.com/archives/bugtraq/2001-06/0353.html
http://www.debian.org/security/2001/dsa-089
http://www.osvdb.org/1883
http://www.redhat.com/support/errata/RHSA-2001-105.html
http://www.redhat.com/support/errata/RHSA-2002-063.html
http://www.securityfocus.com/bid/2932
https://exchange.xforce.ibmcloud.com/vulnerabilities/6752

NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-0784
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html