Vulnerabilities > CVE-2004-2253 - Unspecified vulnerability in Netwin Surgeldap 1.0D/1.0E/1.0G

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
netwin
exploit available

Summary

Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and earlier allows remote attackers to read arbitrary files via a .. in the page parameter of the show command.

Vulnerable Configurations

Part Description Count
Application
Netwin
3

Exploit-Db

descriptionSurgeLDAP 1.0 User.CGI Directory Traversal Vulnerability. CVE-2004-2253. Remote exploit for cgi platform
idEDB-ID:23987
last seen2016-02-02
modified2004-04-12
published2004-04-12
reporterdr_insane
sourcehttps://www.exploit-db.com/download/23987/
titleSurgeLDAP 1.0 User.CGI Directory Traversal Vulnerability