Lucene search

MitreCVE-2006-5028

HistorySep 27, 2006 - 11:07 p.m.

CVE-2006-5028

2006-09-2723:07:00

mitre

web.nvd.nist.gov

cve-2006-5028

directory traversal

swsoft plesk

remote attackers

filemanager.php

nvd

vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Directory traversal vulnerability in filemanager/filemanager.php in SWsoft Plesk 7.5 Reload and Plesk 7.6 for Microsoft Windows allows remote attackers to list arbitrary directories via a …/ (dot dot slash) in the file parameter in a chdir action.

Affected configurations

Nvd

Node

swsoftpleskMatch7.6windows

swsoftplesk_reloadMatch7.5

VendorProductVersionCPE
swsoftplesk7.6cpe:/a:swsoft:plesk:7.6:::
swsoftplesk_reload7.5cpe:/a:swsoft:plesk_reload:7.5:::

Vendor	Product	Version	CPE
swsoft	plesk	7.6	cpe:/a:swsoft:plesk:7.6:::
swsoft	plesk_reload	7.5	cpe:/a:swsoft:plesk_reload:7.5:::

References

secunia.com/advisories/22058

securityreason.com/securityalert/1643

www.securityfocus.com/archive/1/446730/100/0/threaded

www.securityfocus.com/archive/1/470509/100/0/threaded

www.securityfocus.com/bid/20155

exchange.xforce.ibmcloud.com/vulnerabilities/29134

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Related for CVE-2006-5028