Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2214

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2015-2214
Last Modified 05 Mar 2015 12:00:33
Published 05 Mar 2015 10:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2214

Summary

NetCat 5.01 and earlier allows remote attackers to obtain the installation path via the redirect_url parameter to netshop/post.php.

Vulnerable Systems

Application

  • Netcat 5.01


References

MISC - http://tetraph.com/security/full-path-disclosure-vulnerability/netcat-cms-full-path-disclosure-information-disclosure-security-vulnerabilities/

FULLDISC - 20150302 NetCat CMS Full Path Disclosure (Information Disclosure) Security Vulnerabilities

MISC - http://packetstormsecurity.com/files/130583/NetCat-CMS-5.01-3.12-Full-Path-Disclosure.html


Last Updated: 27 May 2016 11:07:58