CVE-2012-4991 - CERT CVE

  1. CVE-2012-4991

ID CVE-2012-4991
Sažetak Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a ..%5C (encoded dot dot backslash) in a URI.
Reference
CVSS
Base: 8.5
Impact: 9.2
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE NONE
CVSS vektor AV:N/AC:L/Au:S/C:C/I:C/A:N
Zadnje važnije ažuriranje 13-12-2012 - 11:53
Objavljeno 13-12-2012 - 11:53