Lucene search
MitreCVE-2006-2899HistoryJun 07, 2006 - 10:02 a.m.
CVE-2006-2899
2006-06-0710:02:00
mitre
web.nvd.nist.gov
30
cve-2006-2899
internetdisk
vulnerability
arbitrary code execution
remote authenticated users
file upload
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.037
Percentile
91.8%
Unspecified vulnerability in ESTsoft InternetDISK versions before 2006/04/20 allows remote authenticated users to execute arbitrary code, possibly by uploading a file with multiple extensions into the WebLink directory.
Affected configurations
Node
estsoftinternetdisk
| Vendor | Product | Version | CPE |
|---|---|---|---|
| estsoft | internetdisk | * | cpe:2.3:a:estsoft:internetdisk:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2006-2899
2006-06-07 10:02:00
cvelist
cvelist
CVE-2006-2899
2006-06-07 10:00:00
prion
prion
Directory traversal
2006-06-07 10:02:00
exploitdb
exploitdb
ESTsoft InternetDisk - Arbitrary File Upload / Script Execution
2006-06-05 00:00:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.037
Percentile
91.8%
Related for CVE-2006-2899