Описание
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2464
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16680
- http://members.lycos.co.uk/r34ct/main/ADA%20Image%20Server%20%28ImgSvr%29%200.4.txt
- http://members.lycos.co.uk/r34ct/main/ADA%20Image%20Server%20(ImgSvr)%200.4.txt
- http://secunia.com/advisories/11287
- http://www.osvdb.org/4946
- http://www.securityfocus.com/archive/1/485490/100/100/threaded
- http://www.securityfocus.com/bid/10048
EPSS
CVE ID
Связанные уязвимости
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
EPSS