CVE-2002-0661

CVSS 7.5 - HIGH
Description

Directory traversal vulnerability in Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters.

Affected Products
12
Vendor Product Version
apache http_server 2.0
apache http_server 2.0.28
apache http_server 2.0.28
apache http_server 2.0.28
apache http_server 2.0.32
apache http_server 2.0.32
apache http_server 2.0.34
apache http_server 2.0.35
apache http_server 2.0.36
apache http_server 2.0.37
apache http_server 2.0.38
apache http_server 2.0.39
References
http://httpd.apache.org/info/security_bulletin_200...
http://marc.info/?l=bugtraq&m=102892744011436&w=2
http://marc.info/?l=bugtraq&m=102951160411052&w=2
http://www.iss.net/security_center/static/9808.php
http://www.securityfocus.com/bid/5434
https://lists.apache.org/thread.html/54a42d4b01968...
https://lists.apache.org/thread.html/5df9bfb86a3b0...
https://lists.apache.org/thread.html/r0276683d8e1e...
https://lists.apache.org/thread.html/r2cb985de917e...
https://lists.apache.org/thread.html/r5001ecf3d6b2...
https://lists.apache.org/thread.html/r5f9c22f9c28a...
https://lists.apache.org/thread.html/r8828e649175d...
https://lists.apache.org/thread.html/r9e8622254184...
https://lists.apache.org/thread.html/r9f93cf6dde30...
https://lists.apache.org/thread.html/rb9c9f42dafa2...
https://lists.apache.org/thread.html/rd00b45b93fda...
https://lists.apache.org/thread.html/rf6449464fd8b...
http://httpd.apache.org/info/security_bulletin_200...
http://marc.info/?l=bugtraq&m=102892744011436&w=2
http://marc.info/?l=bugtraq&m=102951160411052&w=2
Weakness Types
NVD-CWE-Other
CVE Information
CVE ID:
CVE-2002-0661
Published:
2002-08-12
Modified:
2026-04-16
CVSS Score:
7.5
Severity:
HIGH
Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Vendors
apache
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL