Unrated severityNVD Advisory· Published Sep 5, 2001· Updated Jun 16, 2026
CVE-2001-1152
CVE-2001-1152
Description
Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including (1) a // (double slash), (2) a /SUBDIR/.. where the desired file is in the parentdir, (3) a /./, or (4) URL-encoded characters.
Affected products
2cpe:2.3:o:baltimore_technologies:websweeper:4.02:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:baltimore_technologies:websweeper:4.02:*:*:*:*:*:*:*
- (no CPE)range: =4.02
Patches
Vulnerability mechanics
References
3- www.mimesweeper.com/support/technotes/notes/1043.aspnvdVendor Advisory
- www.securityfocus.com/archive/1/212283nvdVendor Advisory
- www.securityfocus.com/cgi-bin/vulns-item.plnvdVendor Advisory
News mentions
0No linked articles in our index yet.