Directory traversal

2006-04-1310:02:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.4%

JSON

Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS, aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a … (dot dot) in the url parameter.

References

secunia.com/advisories/19566

www.securityfocus.com/archive/1/430707/100/0/threaded

www.securityfocus.com/archive/1/431037/30/5580/threaded

www.securityfocus.com/bid/17474

www.vupen.com/english/advisories/2006/1327

exchange.xforce.ibmcloud.com/vulnerabilities/25768