Lucene search

K
cve[email protected]CVE-2007-3692
HistoryJul 11, 2007 - 5:30 p.m.

CVE-2007-3692

2007-07-1117:30:00
web.nvd.nist.gov
26
cve-2007-3692
directory traversal
ezfactory
kddi download cgi
remote attackers
arbitrary files

6.7 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.008 Low

EPSS

Percentile

81.5%

Directory traversal vulnerability in download.cgi in EZFactory KDDI Download CGI 1.x allows remote attackers to read and download arbitrary files via a … (dot dot) in the name parameter.

Affected configurations

NVD
Node
kddiezfactory_download_cgiMatch1.0

6.7 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.008 Low

EPSS

Percentile

81.5%

Related for CVE-2007-3692