CVE-2004-1444

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

Directory traversal vulnerability in Roundup 0.6.4 and earlier allows remote attackers to view arbitrary files via .. (dot dot) sequences in an @@ command in an HTTP GET request.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:roundup-tracker:roundup:*:*:*:*:*:*:*:*

Версия до 0.6.4 (включая)

cpe:2.3:a:roundup-tracker:roundup:0.1.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.1.1:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.1.2:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.1.3:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.2:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.3:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.4:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.5:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.6:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.7:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.2.8:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.3.0:pre1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.3.0:pre2:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.3.0:pre3:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.0:b1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.0:b2:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.1:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.2:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.4.2:pr1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.0:beta1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.0:beta2:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.0:pr1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.1:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.2:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.3:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.4:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.5:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.6:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.7:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.8:stable:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.5.9:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.0:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.0:b1:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.0:b2:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.0:b3:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.0:b4:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.1:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.2:*:*:*:*:*:*:*

cpe:2.3:a:roundup-tracker:roundup:0.6.3:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.16535

Средний

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

CVE-2004-1444

debian

больше 20 лет назад

Directory traversal vulnerability in Roundup 0.6.4 and earlier allows ...

GHSA-q7mf-hp9m-cx6f

github

больше 3 лет назад

Roundup Directory traversal vulnerability