exploitDog

CVE-2011-0329

Опубликовано: 21 фев. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in the GetData method in the Dell DellSystemLite.Scanner ActiveX control in DellSystemLite.ocx 1.0.0.0 allows remote attackers to read arbitrary files via directory traversal sequences in the fileID parameter.

Ссылки

http://secunia.com/advisories/42880
Vendor Advisory
http://secunia.com/secunia_research/2011-10/
Vendor Advisory
http://www.securityfocus.com/bid/46443
http://www.securitytracker.com/id?1025094
http://secunia.com/advisories/42880
Vendor Advisory
http://secunia.com/secunia_research/2011-10/
Vendor Advisory
http://www.securityfocus.com/bid/46443
http://www.securitytracker.com/id?1025094

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:dellsystemlite.scanner_activex_control:1.0.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00255

Низкий

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-7537-qjq2-jjg9

github

больше 3 лет назад

Directory traversal vulnerability in the GetData method in the Dell DellSystemLite.Scanner ActiveX control in DellSystemLite.ocx 1.0.0.0 allows remote attackers to read arbitrary files via directory traversal sequences in the fileID parameter.

EPSS

Процентиль: 49%

0.00255

Низкий

5 Medium

CVSS2

Дефекты

CWE-22