Lucene search

K

MitreCVELIST:CVE-2008-3195

HistorySep 17, 2008 - 6:06 p.m.

CVE-2008-3195

2008-09-1718:06:00

mitre

www.cve.org

3

AI Score

6.8

Confidence

Low

EPSS

0.124

Percentile

95.4%

Directory traversal vulnerability in bin/configure in TWiki before 4.2.3, when a certain step in the installation guide is skipped, allows remote attackers to read arbitrary files via a query string containing a … (dot dot) in the image variable, and execute arbitrary files via unspecified vectors.

References

secunia.com/advisories/31849

secunia.com/advisories/31964

securityreason.com/securityalert/4265

twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2008-3195

twiki.org/cgi-bin/view/Codev/TWikiRelease04x02x03#4_2_3_Bugfix_Highlights

www.kb.cert.org/vuls/id/362012

www.kb.cert.org/vuls/id/RGII-7JEQ7L

www.vupen.com/english/advisories/2008/2586

exchange.xforce.ibmcloud.com/vulnerabilities/45182

exchange.xforce.ibmcloud.com/vulnerabilities/45183

www.exploit-db.com/exploits/6269

AI Score

6.8

Confidence

Low

EPSS

0.124

Percentile

95.4%

Related for CVELIST:CVE-2008-3195

seebug2 openvas4 nvd2 debian1 zdt1 prion2 nessus4 cve2 osv1 cert1 packetstorm1 exploitpack1 freebsd1 ubuntucve1 exploitdb2