Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5972

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-5972
Last Modified 18 Jan 2013 12:00:00
Published 17 Jan 2013 11:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-5972

Summary

Directory traversal vulnerability in the web server in SpecView 2.5 build 853 and earlier allows remote attackers to read arbitrary files via a ... (dot dot dot) in a URI.

Vulnerable Systems

Application

  • Specview 2.5


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-02.pdf

MISC - http://aluigi.altervista.org/adv/specview_1-adv.txt


Last Updated: 27 May 2016 10:49:52