What is CVE-2004-0696?

CVE-2004-0696 is a vulnerability in 4d Webstar. Published 2004-07-27.

Is CVE-2004-0696 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in 4d Webstar

CVE-2004-0696

The ShellExample.cgi script in 4D WebSTAR 5.3.2 and earlier allows remote attackers to list arbitrary directories via a URL with the desired path and a "*" (asterisk) character.

EPSS: 0.014 (69.4th percentile) — read the EPSS interpretation.

Affected products

4d Webstar — versions 4.0, 5.2, 5.2.1
N/a — versions n/a

Public proof-of-concept exploits

Farrhouq/Inpt-report

References

cve@mitre.org (x_refsource_ATSTAKE, vendor-advisory, Vendor Advisory)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2004-0696?: CVE-2004-0696 is a vulnerability in 4d Webstar. Published 2004-07-27.
Is CVE-2004-0696 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.