Lucene search

[email protected]CVE-2006-1771

HistoryApr 13, 2006 - 10:02 a.m.

CVE-2006-1771

2006-04-1310:02:00

[email protected]

web.nvd.nist.gov

cve-2006-1771

directory traversal

pbcs.dll

saxotech

saxopress

saxotech online

publicus

remote code execution

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.4%

JSON

Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS, aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a … (dot dot) in the url parameter.

Affected configurations

NVD

Node

saxotechsaxopress

CPENameOperatorVersion
saxotech:saxopresssaxotech saxopresseq*

CPE	Name	Operator	Version
saxotech:saxopress	saxotech saxopress	eq	*

References

secunia.com/advisories/19566

www.securityfocus.com/archive/1/430707/100/0/threaded

www.securityfocus.com/archive/1/431037/30/5580/threaded

www.securityfocus.com/bid/17474

www.vupen.com/english/advisories/2006/1327

exchange.xforce.ibmcloud.com/vulnerabilities/25768

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.4%

JSON

Related for CVE-2006-1771

cvelist1 prion1 nessus1 nvd1