CVE-2005-1952

2005-06-1404:00:00

mitre

www.cve.org

AI Score

7.4

Confidence

Low

EPSS

0.005

Percentile

75.6%

JSON

Directory traversal vulnerability in Pico Server (pServ) 3.3 allows remote attackers to read arbitrary files and execute arbitrary commands via a /./ (slash dot slash) before each … (dot dot) sequence in the URL, which results in an incorrect directory depth count.

References

marc.info/?l=bugtraq&m=111852830111316&w=2

secunia.com/advisories/15663

sourceforge.net/project/shownotes.php?group_id=59378&release_id=334036