{"vuid":"VU#471691","idnumber":"471691","name":"A1Stats multiple CGI scripts fail to adequately validate user input","keywords":["A1Stats","CGI","user input","directory traversal","../"],"overview":"A1Stats does not properly validate user input, allowing directory traversal and overwriting of files.","clean_desc":"A1Stats is a CGI script that provides reports on web site traffic. A1Stats does not properly filter the CGI query string. An attacker may exploit this vulnerability to traverse directories on the web server or to overwrite arbitrary files to which the web server process has write access.","impact":"Remote attackers can read or write any file on the server, with privileges of the web server process.","resolution":"Upgrade Upgrade to version 1.6 or later of A1Stats: http://www.gadnet.com/a1stats/","workarounds":"","sysaffected":"","thanks":"Thanks to neme for reporting this vulnerability.","author":"This document was written by Shawn Van Ittersum.","public":["h","t","t","p",":","/","/","w","w","w",".","s","e","c","u","r","i","t","y","f","o","c","u","s",".","c","o","m","/","b","i","d","/","2","7","0","5"],"cveids":["CVE-2001-0561"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2001-05-23T15:53:12Z","publicdate":"2001-05-07T00:00:00Z","datefirstpublished":"2002-09-26T22:01:00Z","dateupdated":"2003-02-24T20:20:52Z","revision":10,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"10","cam_internetinfrastructure":"1","cam_population":"1","cam_impact":"8","cam_easeofexploitation":"10","cam_attackeraccessrequired":"20","cam_scorecurrent":"0.78","cam_scorecurrentwidelyknown":"0.93","cam_scorecurrentwidelyknownexploited":"1.23","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.78,"vulnote":null}