Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://securitytracker.com/id?1016421 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-07-10T22:00:00Z
Updated: 2024-09-16T19:20:23.084Z
Reserved: 2006-07-10T00:00:00Z
Link: CVE-2006-3488
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-07-10T22:05:00.000
Modified: 2024-11-21T00:13:43.820
Link: CVE-2006-3488
Redhat
No data.