Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2643

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2004-2643
Last Modified 05 Sep 2008 04:44:43
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2004-2643

Summary

Directory traversal vulnerability in Microsoft cabarc allows remote attackers to overwrite files via "../" sequences in file names in a CAB archive.

Vulnerable Systems

Application

  • Microsoft Cabarc


References

XF - cabarc-dotdot-directory-traversal(17693)

BID - 11376

OSVDB - 10714

SECTRACK - 1011626

SECUNIA - 12816

MISC - http://packetstormsecurity.org/0410-exploits/cabarc.txt

BUGTRAQ - 20041012 Microsoft cabarc directory traversal


Last Updated: 27 May 2016 10:39:34