Lucene search
Japan Vulnerability NotesJVN:80081509HistoryNov 21, 2011 - 12:00 a.m.
JVN#80081509: Nikki vulnerable to directory traversal
2011-11-2100:00:00
Japan Vulnerability Notes
jvn.jp
13
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.005
Percentile
77.2%
Nikki from HP no Mawashimono is CGI software for posting diary entries. Nikki contains a directory traversal vulnerability.
Impact
A remote attacker may access or view arbitrary files on the server.
Solution
Update the software
Update to the latest version according to the information provided by the developer.
Products Affected
- Nikki ver 6.6 and earlier
Related
prion
prion
Directory traversal
2011-12-01 11:55:00
cvelist
cvelist
CVE-2011-4001
2011-12-01 11:00:00
nvd
nvd
CVE-2011-4001
2011-12-01 11:55:06
cve
cve
CVE-2011-4001
2011-12-01 11:55:06
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.005
Percentile
77.2%
Related for JVN:80081509