Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1073

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-1073
Last Modified 07 Mar 2011 09:31:57
Published 07 Mar 2006 07:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1073

Summary

Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.

Vulnerable Systems

Application

  • Simplog 1.0.2


References

VUPEN - ADV-2006-0839

BID - 16965

BUGTRAQ - 20060304 Simplog <= 1.0.2 Vulnerabilities

SECUNIA - 19115

MISC - http://notlegal.ws/simplogsploit.txt

XF - simplog-index-traverse-directories(25067)

SREASON - 542


Last Updated: 27 May 2016 10:41:54