Vulnerabilities > CVE-2004-2464 - Unspecified vulnerability in ADA Imgsvr 0.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ada
exploit available
Summary
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | ADA IMGSVR 0.4 Directory Traversal Vulnerability. CVE-2004-2464. Remote exploit for windows platform |
| id | EDB-ID:23909 |
| last seen | 2016-02-02 |
| modified | 2004-04-05 |
| published | 2004-04-05 |
| reporter | dr_insane |
| source | https://www.exploit-db.com/download/23909/ |
| title | ada imgsvr 0.4 - Directory Traversal Vulnerability |
References
- http://www.securityfocus.com/bid/10048
- http://www.osvdb.org/4946
- http://secunia.com/advisories/11287
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16680
- http://www.securityfocus.com/archive/1/485490/100/100/threaded
- http://members.lycos.co.uk/r34ct/main/ADA%20Image%20Server%20%28ImgSvr%29%200.4.txt