CVE-2002-0773

Name of the Vulnerable Software and Affected Versions: Hosting Controller (affected versions not specified)

Description: The issue allows remote attackers to copy or delete arbitrary files and directories. This is achieved by making a direct request to the "imp rootdir.asp" endpoint and modifying certain parameters, such as ftp, owwwPath, and oftpPath.

Recommendations: For Hosting Controller, as a temporary workaround, consider restricting access to the "imp rootdir.asp" endpoint until a patch is available. Avoid using the parameters ftp, owwwPath, and oftpPath in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.