Lucene search

[email protected]CVE-2005-3468

HistoryNov 02, 2005 - 11:02 p.m.

CVE-2005-3468

2005-11-0223:02:00

[email protected]

web.nvd.nist.gov

cve-2005-3468

f-secure

ms exchange

directory traversal

vulnerability

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.3 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.2%

JSON

Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files.

Affected configurations

NVD

Node

f-securef-secure_anti-virusMatch6.40ms_exchange

f-secureinternet_gatekeeperMatch6.4

f-secureinternet_gatekeeperMatch6.41

f-secureinternet_gatekeeperMatch6.42

CPENameOperatorVersion
f-secure:f-secure_anti-virusf-secure f-secure anti-viruseq6.40
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.4
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.41
f-secure:internet_gatekeeperf-secure internet gatekeepereq6.42

CPE	Name	Operator	Version
f-secure:f-secure_anti-virus	f-secure f-secure anti-virus	eq	6.40
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.4
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.41
f-secure:internet_gatekeeper	f-secure internet gatekeeper	eq	6.42

References

secunia.com/advisories/17361

securitytracker.com/id?1015142

securitytracker.com/id?1015143

www.f-secure.com/security/fsc-2005-2.shtml

www.securityfocus.com/bid/15284

www.vupen.com/english/advisories/2005/2277

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.3 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.2%

JSON

Related for CVE-2005-3468

nvd1 cvelist1