Vulnerabilities > CVE-2004-2170 - Remote Directory Traversal vulnerability in Niti Telecom Caravan Business Server 2.0003D

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
niti-telecom
exploit available

Summary

Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and earlier allows remote attackers to read arbitrary files via the fname parameter.

Vulnerable Configurations

Part Description Count
Application
Niti_Telecom
1

Exploit-Db

descriptionNiti Telecom Caravan Business Server 2.00-03D Remote Directory Traversal Vulnerability. CVE-2004-2170. Webapps exploit for asp platform
idEDB-ID:23635
last seen2016-02-02
modified2004-02-02
published2004-02-02
reporterdr_insane
sourcehttps://www.exploit-db.com/download/23635/
titleNiti Telecom Caravan Business Server 2.00-03D Remote Directory Traversal Vulnerability