3 matches found
CVE-2015-0867
Directory traversal vulnerability in SYNCK GRAPHICA Download Log CGI 3.0 and earlier allows remote attackers to read arbitrary files via a crafted filename...
CVE-2015-0867
CVE-2015-0867 is a directory traversal vulnerability in SYNCK GRAPHICA Download Log CGI, affecting version 3.0 and earlier. The flaw allows remote attackers to read arbitrary files by supplying a crafted filename. Public disclosures in JVN/NVD indicate root cause in the Download Log CGI’s file-na...
SYNCK GRAPHICA Download Log CGI vulnerable to directory traversal
Overview Download Log CGI provided by SYNCK GRAPHICA contains an issue in processing file names, which may result in a directory traversal vulnerability. Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...