Vulnerabilities > CVE-2002-0879 - Unspecified vulnerability in Gafware Cfximage 1.6.4/1.6.6
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. or (2) a C: style pathname in the FILE parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | Gafware CFXImage 1.6.4/1.6.6 ShowTemp File Disclosure Vulnerability. CVE-2002-0879. Webapps exploit for cfm platform |
id | EDB-ID:21493 |
last seen | 2016-02-02 |
modified | 2002-05-29 |
published | 2002-05-29 |
reporter | Richard Brain |
source | https://www.exploit-db.com/download/21493/ |
title | Gafware CFXImage 1.6.4/1.6.6 ShowTemp File Disclosure Vulnerability |