CVE-2004-0578

2004-07-0604:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.005

Percentile

77.4%

JSON

WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-internal directory.

References

marc.info/?l=full-disclosure&m=108872788123695&w=2

www.idefense.com/application/poi/display?id=113

exchange.xforce.ibmcloud.com/vulnerabilities/16589