CVE-2012-1221

Опубликовано: 21 фев. 2012

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in the telnet server in RabidHamster R2/Extreme 1.65 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the File command.

Ссылки

http://aluigi.org/adv/r2_1-adv.txt
Exploit
http://secunia.com/advisories/47966
Vendor Advisory
http://www.osvdb.org/79094
http://www.securityfocus.com/bid/52061
https://exchange.xforce.ibmcloud.com/vulnerabilities/73114
http://aluigi.org/adv/r2_1-adv.txt
Exploit
http://secunia.com/advisories/47966
Vendor Advisory
http://www.osvdb.org/79094
http://www.securityfocus.com/bid/52061
https://exchange.xforce.ibmcloud.com/vulnerabilities/73114

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:rabidhamster:r2\/:*:1.65:*:*:*:*:*:*

Версия до extreme (включая)

cpe:2.3:a:rabidhamster:r2\/extreme:1.51:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09546

Низкий

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-292r-44qm-39gx

github

около 3 лет назад