Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-4140
HistoryAug 14, 2006 - 11:04 p.m.

CVE-2006-4140

2006-08-1423:04:00
[email protected]
web.nvd.nist.gov
25
cve
2006
4140
directory traversal
ipcheck server monitor
vulnerability
remote attackers
arbitrary files

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.034 Low

EPSS

Percentile

91.5%

JSON

Directory traversal vulnerability in IPCheck Server Monitor before 5.3.3.639/640 allows remote attackers to read arbitrary files via modified … (dot dot) sequences in the URL, including (1) “…%2f” (encoded “/” slash), “…/” (multiple dot), and “…%255c…/” (double-encoded "" backslash).

Affected configurations

NVD
Node
ipcheckserver_monitorMatch4.3.1.368
OR
ipcheckserver_monitorMatch4.3.1.382
OR
ipcheckserver_monitorMatch4.4.1.521
OR
ipcheckserver_monitorMatch4.4.1.522
OR
ipcheckserver_monitorMatch5.0.1.272
OR
ipcheckserver_monitorMatch5.0.1.299
OR
ipcheckserver_monitorMatch5.0.1.309
OR
ipcheckserver_monitorMatch5.0.1.321
OR
ipcheckserver_monitorMatch5.1.0.341
OR
ipcheckserver_monitorMatch5.1.0.342
OR
ipcheckserver_monitorMatch5.1.0.345
OR
ipcheckserver_monitorMatch5.2.0.404
OR
ipcheckserver_monitorMatch5.2.0.405
OR
ipcheckserver_monitorMatch5.2.0.418
OR
ipcheckserver_monitorMatch5.2.0.420
OR
ipcheckserver_monitorMatch5.2.2.449
OR
ipcheckserver_monitorMatch5.2.2.451
OR
ipcheckserver_monitorMatch5.3.0.506
OR
ipcheckserver_monitorMatch5.3.0.507
OR
ipcheckserver_monitorMatch5.3.0.508
OR
ipcheckserver_monitorMatch5.3.0.509
OR
ipcheckserver_monitorMatch5.3.1.574
OR
ipcheckserver_monitorMatch5.3.1.575
OR
ipcheckserver_monitorMatch5.3.1.578
OR
ipcheckserver_monitorMatch5.3.1.579
OR
ipcheckserver_monitorMatch5.3.1.580
OR
ipcheckserver_monitorMatch5.3.1.581
OR
ipcheckserver_monitorMatch5.3.1.586
OR
ipcheckserver_monitorMatch5.3.1.587
OR
ipcheckserver_monitorMatch5.3.2.605
OR
ipcheckserver_monitorMatch5.3.2.606
OR
ipcheckserver_monitorMatch5.3.2.609
OR
ipcheckserver_monitorMatch5.3.2.610
OR
ipcheckserver_monitorMatch5.3.2.616
OR
ipcheckserver_monitorMatch5.3.2.617

Related

cvelist 1
nessus 1
nvd 1
cvelist
cvelist
CVE-2006-4140
2006-08-14 23:00:00
nessus
nessus
IPCheck Server Monitor Traversal Arbitrary File Access
2006-08-14 00:00:00
nvd
nvd
CVE-2006-4140
2006-08-14 23:04:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.034 Low

EPSS

Percentile

91.5%

JSON
Related for CVE-2006-4140
cvelist1nessus1nvd1