CVE-2005-1549

Properties

Published:
13.05.2005
Updated:
20.10.2005
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:C/I:N/A:N/B:N) Approximated
    Product:
    Colored Scripts: Easy Message Board

    Vulnerability description

    Directory traversal vulnerability in easymsgb.pl in Easy Message Board allows remote attackers to read arbitrary files via a .. (dot dot) in the print parameter.

    References:

    BUGTRAQ: http://marc.theaimsgroup.com/?l=bugtraq&m=111566691005844&w=2
    MISC: http://www.soulblack.com.ar/repo/papers/easymsgb_advisory.txt
    BID: http://www.securityfocus.com/bid/13551
    OSVDB: http://www.osvdb.org/16162
    BUGTRAQ: http://marc.theaimsgroup.com/?l=bugtraq&m=111566691005844&w=2