Lucene search
HistoryDec 15, 2006 - 10:28 p.m.
CVE-2006-6598
cve-2006-6598
directory traversal
viewnfo.php
torrentflux
torrentflux-b4rt
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.4%
Directory traversal vulnerability in viewnfo.php in (1) TorrentFlux before 2.2 and (2) torrentflux-b4rt before 2.1-b4rt-972 allows remote authenticated users to read arbitrary files via … (dot dot) sequences in the path parameter, a different vector than CVE-2006-6328.
Affected configurations
Node
torrentfluxtorrentfluxRange≤2.2
ORtorrentfluxtorrentflux-b4rtRange≤2.1_b4rt971
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt3
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt4
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt5
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt6
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt7
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt8
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt9
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt61
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt81
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt82
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt83
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt84
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt85
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt91
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt92
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt93
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt94
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt95
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt96
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt97
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt801
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt802
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt951
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt952
ORtorrentfluxtorrentflux-b4rtMatch2.1_b4rt953
Related
cvelist
cvelist
nvd
nvd
ubuntucve
ubuntucve
cve
cve
CVE-2006-6328
2006-12-06 21:28:00
CVE-2006-6604
2006-12-15 22:28:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.4%
Related for CVE-2006-6598