Lucene search

[email protected]NVD:CVE-2006-3488

HistoryJul 10, 2006 - 10:05 p.m.

CVE-2006-3488

2006-07-1022:05:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.004

Percentile

74.6%

JSON

Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.

Affected configurations

Nvd

Node

virtuastorevirtuastoreMatch2.0

VendorProductVersionCPE
virtuastorevirtuastore2.0cpe:2.3:a:virtuastore:virtuastore:2.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
virtuastore	virtuastore	2.0	cpe:2.3:a:virtuastore:virtuastore:2.0:::::::*

References

securitytracker.com/id?1016421

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.004

Percentile

74.6%

JSON

Related for NVD:CVE-2006-3488

cvelist1 cve1