CVE-2004-2170

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and earlier allows remote attackers to read arbitrary files via the fname parameter.

Ссылки

http://members.lycos.co.uk/r34ct/main/Caravan/Caravan.txt
Exploit
Vendor Advisory
http://securitytracker.com/id?1008913
http://www.osvdb.org/3787
http://www.secunia.com/advisories/10763/
Vendor Advisory
http://www.securityfocus.com/bid/9555
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15004
http://members.lycos.co.uk/r34ct/main/Caravan/Caravan.txt
Exploit
Vendor Advisory
http://securitytracker.com/id?1008913
http://www.osvdb.org/3787
http://www.secunia.com/advisories/10763/
Vendor Advisory
http://www.securityfocus.com/bid/9555
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15004

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:niti_telecom:caravan_business_server:2.00-03d:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.07102

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7hj2-2m42-mr45

github

почти 4 года назад