Lucene search
Japan Vulnerability NotesJVN:00152874HistoryDec 15, 2009 - 12:00 a.m.
JVN#00152874 P forum vulnerable to directory traversal
2009-12-1500:00:00
Japan Vulnerability Notes
jvn.jp
19
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
75.8%
P forum from Rocomotion is a bulletin board software. P forum contains a directory traversal vulnerability.
Impact
A remote attacker could view an arbitrary file on the server.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
This vulnerability has been addressed and an updated version (1.28) was released on October 30, 2009.
Products Affected
- P forum ver 1.27 and earlier
Related
cvelist
cvelist
CVE-2009-4383
2009-12-22 23:00:00
cve
cve
CVE-2009-4383
2009-12-22 23:30:00
prion
prion
Directory traversal
2009-12-22 23:30:00
nvd
nvd
CVE-2009-4383
2009-12-22 23:30:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
75.8%
Related for JVN:00152874