Directory traversal

2007-12-0711:46:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.8%

JSON

Directory traversal vulnerability in pages/default.aspx in Absolute News Manager.NET 5.1 allows remote attackers to read arbitrary files via a … (dot dot) in the template parameter.

CPENameOperatorVersion
absolute_news_manager.neteq5.1

CPE	Name	Operator	Version
	absolute_news_manager.net	eq	5.1

References

osvdb.org/40575

secunia.com/advisories/27923

www.procheckup.com/Vulnerability_PR07-39.php

www.securityfocus.com/bid/26692

www.xigla.com/news/default.aspx

www.xigla.com/security/ANMNET51-SecurityUpdate20071128.zip

exchange.xforce.ibmcloud.com/vulnerabilities/38870

marc.info/?l=bugtraq&m=119678724111351&w=2