Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0348

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2005-0348
Last Modified 07 Mar 2011 09:19:51
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-0348

Summary

Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete arbitrary files via an RGP file with a .. (dot dot) in the FILENAME tag.

Vulnerable Systems

Application

  • Realnetworks Realarcade 1.2.0.994


References

XF - realarcade-rgp-file-deletion(19260)

BID - 12494

SECUNIA - 14187

BUGTRAQ - 20050208 Integer overflow and arbitrary files deletion in RealArcade

SECTRACK - 1013128


Last Updated: 27 May 2016 10:39:46