Lucene search

[email protected]CVE-2008-0609

HistoryFeb 06, 2008 - 12:00 p.m.

CVE-2008-0609

2008-02-0612:00:00

CWE-22

[email protected]

web.nvd.nist.gov

cve

2008

0609

directory traversal

divideconcept

vhd web pack

nvd

vulnerability

index.php

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

88.0%

JSON

Directory traversal vulnerability in index.php in DivideConcept VHD Web Pack 2.0 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the page parameter.

Affected configurations

NVD

Node

divideconceptvhd_web_packMatch2.0

CPENameOperatorVersion
divideconcept:vhd_web_packdivideconcept vhd web packeq2.0

CPE	Name	Operator	Version
divideconcept:vhd_web_pack	divideconcept vhd web pack	eq	2.0

References

secunia.com/advisories/28712

securityreason.com/securityalert/3613

www.securityfocus.com/archive/1/487485/100/0/threaded

www.securityfocus.com/bid/27621

www.exploit-db.com/exploits/5060

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

88.0%

JSON

Related for CVE-2008-0609

cvelist1 prion1 nvd1