Security Advisory

CVE-2006-2319

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-05-12 00:00:00

Last updated 2024-08-07 17:43:29

Assigner mitre

State PUBLISHED

Description

Ideal Science Ideal BB 1.5.4a and earlier does not properly check file extensions before permitting an upload, which allows remote attackers to upload and execute an ASP script via a 0x00 character before the ".asp" portion of the filename.

← Browse all CVEs View on cve.org ↗