Vulnerabilities > CVE-2004-2287 - Directory Traversal vulnerability in DSM Light web File Browser 2.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

dsm

exploit available

NVD

Published: 2004-12-31

Updated: 2008-09-05

Summary

Directory traversal vulnerability in explorer.php in DSM Light Web File Browser 2.0 allows remote attackers to read arbitrary files via .. (dot dot) in the wdir parameter.

Vulnerable Configurations

Part	Description	Count
Application	Dsm DSM Light WEB File Browser 2.0	1

Exploit-Db

description	DSM Light Web File Browser 2.0 Directory Traversal Vulnerability. CVE-2004-2287. Webapps exploit for php platform
id	EDB-ID:24131
last seen	2016-02-02
modified	2004-05-18
published	2004-05-18
reporter	Humberto
source	https://www.exploit-db.com/download/24131/
title	dsm light Web file browser 2.0 - Directory Traversal Vulnerability

References

http://www.securityfocus.com/bid/10381