5

CVE-1999-1050

Exploit
Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Matt WrightFormhandler.Cgi Version1.0
Matt WrightFormhandler.Cgi Version2.0
Matt WrightFormhandler.Cgi Version3.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.85% 0.939
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.securityfocus.com/archive/1/34600
http://www.securityfocus.com/archive/1/34939
Vendor Advisory
Exploit
http://www.securityfocus.com/bid/798
Vendor Advisory
Exploit
http://www.securityfocus.com/bid/799
Vendor Advisory
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/3550