CVE-2006-2317

Sažetak

Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to read arbitrary files under the web root via unspecified attack vectors related to the OpenTextFile method in Scripting.FileSystemObject.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0203.html
http://secunia.com/advisories/20035
http://securityreason.com/securityalert/871
http://www.idealscience.com/ibb/posts.aspx?postID=24415
http://www.osvdb.org/25455
http://www.securityfocus.com/archive/1/433248/100/0/threaded
http://www.securityfocus.com/bid/17920
http://www.vupen.com/english/advisories/2006/1729
https://exchange.xforce.ibmcloud.com/vulnerabilities/26348

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

18-10-2018 - 16:39

Objavljeno

12-05-2006 - 00:02