Описание
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1:1.2.7.1.dfsg-2 |
| devel | released | 1:1.2.7.1.dfsg-2 |
| edgy | released | 1:1.2.7.1.dfsg-2 |
| feisty | released | 1:1.2.7.1.dfsg-2 |
| gutsy | released | 1:1.2.7.1.dfsg-2 |
| upstream | needs-triage |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 90%
0.05519
Низкий
5 Medium
CVSS2
Связанные уязвимости
nvd
почти 20 лет назад
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.
debian
почти 20 лет назад
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 throu ...
github
больше 3 лет назад
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.
EPSS
Процентиль: 90%
0.05519
Низкий
5 Medium
CVSS2