CVE-2006-1175

Sažetak

The WeOnlyDo! SFTP (wodSFTP) ActiveX control is marked as safe for scripting, which allows remote attackers to read and write files in arbitrary locations by accessing the control from a web page.

Reference

http://secunia.com/advisories/20361
http://www.kb.cert.org/vuls/id/378604
http://www.securityfocus.com/bid/18192
http://www.vupen.com/english/advisories/2006/2064
https://exchange.xforce.ibmcloud.com/vulnerabilities/26752

CVSS

Base:	4.0
Impact:	4.9
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:H/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

20-07-2017 - 01:30

Objavljeno

31-05-2006 - 10:06