OSVDB ID: 56290

Title: EditTag edittag.cgi file Parameter Encoded Traversal Arbitrary File Access

Info

Disclosure

Jan 24, 2003

Discovery

Unknown

Dates

Exploit

Jan 24, 2003

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality
Exploit: Exploit Public
OSVDB: Web Related

Solution

Products

Unknown or Incomplete

References

ISS X-Force ID: 11159
CVE ID: 2003-1351 (see also: NVD)
Bugtraq ID: 6675
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-01/0269.html
Other Advisory URL: http://securityreason.com/securityalert/3231

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/56290