Описание
Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS, aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a .. (dot dot) in the url parameter.
Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS, aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a .. (dot dot) in the url parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1771
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25768
- http://secunia.com/advisories/19566
- http://www.securityfocus.com/archive/1/430707/100/0/threaded
- http://www.securityfocus.com/archive/1/431037/30/5580/threaded
- http://www.securityfocus.com/bid/17474
- http://www.vupen.com/english/advisories/2006/1327
EPSS
Процентиль: 89%
0.04655
Низкий
CVE ID
Связанные уязвимости
nvd
почти 20 лет назад
Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS, aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a .. (dot dot) in the url parameter.
EPSS
Процентиль: 89%
0.04655
Низкий