Info

Last Modified

about 1 year ago

Percent Complete

Disclosure

Apr 21, 2005

Discovery

Unknown

Dates

Exploit

Apr 21, 2005

Solution

Unknown

This Entry needs help! It is only 5% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Keywords

No Keywords

Description

(Description Provided by CVE) : Directory traversal vulnerability in Yawcam 0.2.5 allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in a GET request.

Classification

Attack Type: Input Manipulation

Products

Unknown or Incomplete

References

Security Tracker: 1013781
Secunia Advisory ID: 15052
Related OSVDB ID: 15732
CVE ID: 2005-1230 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-04/0472.html
http://marc.theaimsgroup.com/?l=bugtraq&m=111410564915961&w=2
Other Advisory URL: http://www.autistici.org/fdonato/advisory/Yawcam0.2.5-adv.txt
Vendor URL: http://www.yawcam.com/

Tools & Filters

Nessus	18176

Manual Testing Notes

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches