Lucene search
HistoryJan 08, 2008 - 7:46 p.m.
CVE-2008-0140
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6
Confidence
Low
EPSS
0.005
Percentile
77.0%
Directory traversal vulnerability in error.php in Uebimiau Webmail 2.7.10 and 2.7.2 allows remote authenticated users to read arbitrary files via a … (dot dot) in the selected_theme parameter, a different vector than CVE-2007-3172.
Affected configurations
Node
uebimiauwebmailMatch2.7.2
ORuebimiauwebmailMatch2.7.10
Related
cve
cve
prion
prion
Directory traversal
2008-01-08 19:46:00
Directory traversal
2007-06-11 22:30:00
Directory traversal
2008-01-10 00:46:00
cvelist
cvelist
nvd
nvd
CVE-2007-3172
2007-06-11 22:30:00
CVE-2008-0210
2008-01-10 00:46:00
exploitdb
exploitdb
Uebimiau Web-Mail 2.7.10/2.7.2 - Remote File Disclosure
2008-01-06 00:00:00
nessus
nessus
UebiMiau Multiple Input Validation Vulnerabilities
2007-05-30 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6
Confidence
Low
EPSS
0.005
Percentile
77.0%
Related for NVD:CVE-2008-0140