CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
87.8%
Directory traversal vulnerability in ZNC before 0.072 allows remote attackers to overwrite arbitrary files via a crafted DCC SEND request.
Vendor | Product | Version | CPE |
---|---|---|---|
znc | znc | 0.044 | cpe:2.3:a:znc:znc:0.044:*:*:*:*:*:*:* |
znc | znc | 0.045 | cpe:2.3:a:znc:znc:0.045:*:*:*:*:*:*:* |
znc | znc | 0.047 | cpe:2.3:a:znc:znc:0.047:*:*:*:*:*:*:* |
znc | znc | 0.052 | cpe:2.3:a:znc:znc:0.052:*:*:*:*:*:*:* |
znc | znc | 0.054 | cpe:2.3:a:znc:znc:0.054:*:*:*:*:*:*:* |
znc | znc | 0.056 | cpe:2.3:a:znc:znc:0.056:*:*:*:*:*:*:* |
znc | znc | 0.058 | cpe:2.3:a:znc:znc:0.058:*:*:*:*:*:*:* |
znc | znc | 0.060 | cpe:2.3:a:znc:znc:0.060:*:*:*:*:*:*:* |
znc | znc | 0.062 | cpe:2.3:a:znc:znc:0.062:*:*:*:*:*:*:* |
znc | znc | 0.064 | cpe:2.3:a:znc:znc:0.064:*:*:*:*:*:*:* |
en.znc.in/w/index.php?title=ZNC&oldid=3209#WARNING
en.znc.in/wiki/ChangeLog/0.072
secunia.com/advisories/35916
www.debian.org/security/2009/dsa-1848
www.openwall.com/lists/oss-security/2009/07/21/5
znc.svn.sourceforge.net/viewvc/znc?view=rev&sortby=rev&sortdir=down&revision=1570
www.redhat.com/archives/fedora-package-announce/2009-July/msg00965.html