Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and earlier allows remote attackers to read arbitrary files via the fname parameter.
References
Link | Resource |
---|---|
http://members.lycos.co.uk/r34ct/main/Caravan/Caravan.txt | Exploit Vendor Advisory |
http://securitytracker.com/id?1008913 | |
http://www.osvdb.org/3787 | |
http://www.secunia.com/advisories/10763/ | Vendor Advisory |
http://www.securityfocus.com/bid/9555 | Exploit |
https://exchange.xforce.ibmcloud.com/vulnerabilities/15004 |
Configurations
History
No history.
Information
Published : 2004-12-31 05:00
Updated : 2024-02-04 16:31
NVD link : CVE-2004-2170
Mitre link : CVE-2004-2170
CVE.ORG link : CVE-2004-2170
JSON object : View
Products Affected
niti_telecom
- caravan_business_server
CWE