CVE-2009-2166

Опубликовано: 22 июн. 2009

Источник: ubuntu

Приоритет: medium

CVSS2: 5

Описание

Absolute path traversal vulnerability in cvs.php in OCS Inventory NG before 1.02.1 on Unix allows remote attackers to read arbitrary files via a full pathname in the log parameter.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.0.5-1.1
cosmic	not-affected	2.0.5-1.1
dapper	DNE
devel	not-affected	2.0.5-1.1
esm-apps/bionic	not-affected	2.0.5-1.1
esm-apps/xenial	not-affected	2.0.5-1.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [2.0.5-1.1]]
hardy	ignored	end of life
intrepid	ignored	end of life

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-2166

5 Medium

CVSS2

Связанные уязвимости

CVE-2009-2166

nvd

больше 16 лет назад

Absolute path traversal vulnerability in cvs.php in OCS Inventory NG before 1.02.1 on Unix allows remote attackers to read arbitrary files via a full pathname in the log parameter.

CVE-2009-2166

debian

больше 16 лет назад

Absolute path traversal vulnerability in cvs.php in OCS Inventory NG b ...

GHSA-6wjf-4944-xw92

github

почти 4 года назад

Absolute path traversal vulnerability in cvs.php in OCS Inventory NG before 1.02.1 on Unix allows remote attackers to read arbitrary files via a full pathname in the log parameter.

5 Medium

CVSS2

CVE-2009-2166

Описание

Пакет ocsinventory-server

Ссылки на источники

Связанные уязвимости