Security Advisory

CVE-1999-1050

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2001-09-12 04:00:00

Last updated 2024-08-01 16:55:29

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.

← Browse all CVEs View on cve.org ↗