CVE-2012-4958 - CERT CVE
ID CVE-2012-4958
Sažetak Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to read arbitrary files via a 126 /FSF/CMD request with a .. (dot dot) in a FILE element of an FSFUI record.
Reference
CVSS
Base: 7.8
Impact: 6.9
Exploitability:10.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE NONE NONE
CVSS vektor AV:N/AC:L/Au:N/C:C/I:N/A:N
Zadnje važnije ažuriranje 19-11-2012 - 19:23
Objavljeno 18-11-2012 - 19:55