CVE-2016-7843

Sažetak

Directory traversal vulnerability in AttacheCase for Java 0.60 and earlier, AttacheCase Lite 1.4.6 and earlier, and AttacheCase Pro 1.5.7 and earlier allows remote attackers to read arbitrary files via specially crafted ATC file.

Reference

http://jvn.jp/en/jp/JVN28331227/index.html
http://maruuofactory.life.coocan.jp/attachecase/#pathTraversal
http://www.securityfocus.com/bid/95445

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

10-05-2017 - 19:15

Objavljeno

28-04-2017 - 16:59