Lucene search
MitreCVE-2009-4800HistoryApr 22, 2010 - 2:30 p.m.
CVE-2009-4800
2010-04-2214:30:00
CWE-22
mitre
web.nvd.nist.gov
23
cve-2009-4800
directory traversal
sysax multi server
remote authentication
dele command
vulnerability
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
AI Score
6.4
Confidence
Low
EPSS
0.005
Percentile
76.0%
Directory traversal vulnerability in Sysax Multi Server 4.3 and 4.5 allows remote authenticated users to delete arbitrary files via a …// (dot dot slash slash) in a DELE command.
Affected configurations
Node
sysaxmulti_serverMatch4.3
ORsysaxmulti_serverMatch4.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sysax | multi_server | 4.3 | cpe:2.3:a:sysax:multi_server:4.3:*:*:*:*:*:*:* |
| sysax | multi_server | 4.5 | cpe:2.3:a:sysax:multi_server:4.5:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-4800
2010-04-22 14:00:00
nvd
nvd
CVE-2009-4800
2010-04-22 14:30:00
prion
prion
Directory traversal
2010-04-22 14:30:00
exploitdb
exploitdb
Sysax Multi Server 4.3 - Arbitrary Delete Files Expoit
2009-03-23 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
AI Score
6.4
Confidence
Low
EPSS
0.005
Percentile
76.0%
Related for CVE-2009-4800