CVE-2004-2184

2005-07-1004:00:00

mitre

www.cve.org

7 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.4%

JSON

Directory traversal vulnerability in Digicraft Yak! server 2.0 through 2.1.2 allows remote attackers to read or write arbitrary files via “…/” or "…" sequences in commands such as (1) dir or (2) put.

References

aluigi.altervista.org/adv/yak-adv.txt

marc.info/?l=full-disclosure&m=109788315103778&w=2

secunia.com/advisories/12849

securitytracker.com/id?1011708

www.osvdb.org/10763

www.securityfocus.com/archive/1/378533

www.securityfocus.com/bid/11433

exchange.xforce.ibmcloud.com/vulnerabilities/17740