Lucene search
HistoryJan 20, 2012 - 5:55 p.m.
CVE-2012-0907
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.2%
Directory traversal vulnerability in the web player in NeoAxis NeoAxis web player 1.4 and earlier allows user-assisted remote attackers to write arbitrary files via a … (dot dot) in a filename in the neoaxis_web_application_win32.zip ZIP archive.
Affected configurations
Node
neoaxisneoaxis_web_playerRange≤1.4
ORneoaxisneoaxis_web_playerMatch1.1
ORneoaxisneoaxis_web_playerMatch1.2
ORneoaxisneoaxis_web_playerMatch1.3
Related
cve
cve
CVE-2012-0907
2012-01-20 17:55:02
openvas
openvas
NeoAxis Web Player Zip File Directory Traversal Vulnerability
2012-02-01 00:00:00
NeoAxis Web Player Zip File Directory Traversal Vulnerability
2012-02-01 00:00:00
prion
prion
Directory traversal
2012-01-20 17:55:00
cvelist
cvelist
CVE-2012-0907
2012-01-20 17:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.2%
Related for NVD:CVE-2012-0907