{"title": "fkey Arbitrary File Access", "published": "2005-01-20T22:24:33", "references": [], "type": "osvdb", "enchantments": {"score": {"value": -0.3, "vector": "NONE", "modified": "2017-04-28T13:20:08", "rev": 2}, "dependencies": {"references": [], "modified": "2017-04-28T13:20:08", "rev": 2}, "vulnersScore": -0.3}, "cvelist": [], "viewCount": 0, "affectedSoftware": [{"version": "0.0.2", "name": "fkey", "operator": "eq"}], "id": "OSVDB:13202", "modified": "2005-01-20T22:24:33", "href": "https://vulners.com/osvdb/OSVDB:13202", "edition": 1, "description": "## Vulnerability Description\nfkey contains a flaw that may allow a malicious user to access an arbitrary file. The issue is triggered when a filename path of less than ten characters is sent to the fkey server. It is possible that the flaw may allow sensitive files to be viewed by the attacker resulting in a loss of confidentiality.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nfkey contains a flaw that may allow a malicious user to access an arbitrary file. The issue is triggered when a filename path of less than ten characters is sent to the fkey server. It is possible that the flaw may allow sensitive files to be viewed by the attacker resulting in a loss of confidentiality.\n## References:\nVendor URL: http://www.freshmeat.net/projects/fkey\nOther Advisory URL: http://www.securiteam.com/exploits/5PP0L0UELA.html\n[Nessus Plugin ID:16224](https://vulners.com/search?query=pluginID:16224)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-01/0224.html\nBugtraq ID: 12321\n", "bulletinFamily": "software", "reporter": "Vade 79(v9@fakehalo.deadpig.org)", "cvss": {"vector": "NONE", "score": 0.0}, "lastseen": "2017-04-28T13:20:08"}

{}