Directory traversal vulnerability in the web player in NeoAxis NeoAxis web player 1.4 and earlier allows user-assisted remote attackers to write arbitrary files via a .. (dot dot) in a filename in the neoaxis_web_application_win32.zip ZIP archive.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-01-20T17:00:00
Updated: 2024-08-06T18:38:14.999Z
Reserved: 2012-01-20T00:00:00
Link: CVE-2012-0907
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-01-20T17:55:02.927
Modified: 2017-08-29T01:31:05.913
Link: CVE-2012-0907
Redhat
No data.