Lucene search

MitreCVE-2004-0059

HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0059

2004-02-1705:00:00

mitre

web.nvd.nist.gov

cve

directory traversal

vulnerability

upload capability

www file share pro

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

Low

EPSS

0.006

Percentile

79.2%

JSON

Directory traversal vulnerability in upload capability of WWW File Share Pro 2.42 and earlier allows remote attackers to overwrite arbitrary files via … (dot dot) sequences in the filename parameter of a Content-Disposition: header.

Affected configurations

Nvd

Node

lionmax_softwarewww_file_share_proRange≤2.42

VendorProductVersionCPE
lionmax_softwarewww_file_share_pro*cpe:2.3:a:lionmax_software:www_file_share_pro:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lionmax_software	www_file_share_pro	*	cpe:2.3:a:lionmax_software:www_file_share_pro::::::::

References

marc.info/?l=bugtraq&m=107411794303201&w=2

www.securitytracker.com/id?1008779

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

Low

EPSS

0.006

Percentile

79.2%

JSON

Related for CVE-2004-0059