CVE-2005-3040

2022-10-0316:22:40

mitre

www.cve.org

directory traversal

tac vista 4.0

web interface

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.6%

JSON

Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via “…” sequences in the Template parameter.

References

archives.neohapsis.com/archives/fulldisclosure/2005-09/0469.html

secunia.com/advisories/16854

securitytracker.com/id?1014923

www.cirt.dk/advisories/cirt-37-advisory.pdf

www.osvdb.org/19479