header-logo
Suggest Exploit
vendor:
Offline Explorer
by:
SecurityFocus
8.8
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: Offline Explorer
Affected Version From: All versions
Affected Version To: All versions
Patch Exists: No
Related CWE: N/A
CPE: meta-products-offline-explorer
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2001

MetaProducts Offline Explorer Directory Traversal Vulnerability

MetaProducts Offline Explorer is vulnerable to a directory traversal attack, which allows a remote attacker to view the full contents of the directory structure of a system Offline Explorer resides on. By default, Offline Explorer listens on port 800. A remote user may retrieve a directory listing and browse its contents without any authorization whatsoever by issuing a GET request followed by a corresponding physical or logical drive letter.

Mitigation:

Restrict access to the port 800 or disable the service.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/2084/info

MetaProducts Offline Explorer is an application that allows a user to download the contents of a website or FTP site for offline browsing at a later time.

It is possible to view the full contents of the directory structure of a system Offline Explorer resides on. By default, Offline Explorer listens on port 800. A remote user may retrieve a directory listing and browse its contents without any authorization whatsoever by issuing a GET request followed by a corresponding physical or logical drive letter.

Eg.

http://target:800/C:/
will reveal a directory listing for drive C.

Navigation

Suggest Exploit

Services By CQR