Lucene search

MitreCVE-2005-4039

HistoryDec 06, 2005 - 11:03 a.m.

CVE-2005-4039

2005-12-0611:03:00

mitre

web.nvd.nist.gov

cve-2005-4039

directory traversal

web4future portal solutions

remote attackers

arbitrary file read

security vulnerability

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Directory traversal vulnerability in arhiva.php in Web4Future Portal Solutions News Portal allows remote attackers to read arbitrary files via the dir parameter.

Affected configurations

Nvd

Node

web4futureportal_solutions

VendorProductVersionCPE
web4futureportal_solutions*cpe:2.3:a:web4future:portal_solutions:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
web4future	portal_solutions	*	cpe:2.3:a:web4future:portal_solutions::::::::

References

pridels0.blogspot.com/2005/12/web4future-portal-solutions-news.html

secunia.com/advisories/17880

www.osvdb.org/21423

www.securityfocus.com/bid/15718

www.vupen.com/english/advisories/2005/2733

exchange.xforce.ibmcloud.com/vulnerabilities/23421

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Related for CVE-2005-4039