Security Advisory

CVE-2006-2318

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-05-12 00:00:00

Last updated 2024-08-07 17:43:29

Assigner mitre

State PUBLISHED

Description

Incomplete blacklist vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to upload and execute an ASP script via a ".asa" file, which bypasses the check for the ".asp" extension but is executable on the server.

← Browse all CVEs View on cve.org ↗