CVE-2007-3692

2007-07-11T17:30:00
ID CVE-2007-3692
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:32:00

Description

Directory traversal vulnerability in download.cgi in EZFactory KDDI Download CGI 1.x allows remote attackers to read and download arbitrary files via a .. (dot dot) in the name parameter.