Описание
Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to download arbitrary files via a .. (dot dot) in the name parameter.
Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to download arbitrary files via a .. (dot dot) in the name parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3985
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35585
- http://marc.info/?l=bugtraq&m=118522960430476&w=2
- http://osvdb.org/43770
- http://secunia.com/advisories/26167
- http://www.oliverkarow.de/research/securityreporter.txt
- http://www.securecomputing.com/index.cfm?skey=1429
- http://www.securityfocus.com/bid/25027
- http://www.securitytracker.com/id?1018443
EPSS
Процентиль: 76%
0.00967
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to download arbitrary files via a .. (dot dot) in the name parameter.
EPSS
Процентиль: 76%
0.00967
Низкий