Vulnerabilities > CVE-2005-1939 - Directory Traversal vulnerability in Ipswitch Whatsup Small Business 2004

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
ipswitch
exploit available
NVD
Published: 2005-12-31
Updated: 2017-07-11

Summary

Directory traversal vulnerability in Ipswitch WhatsUp Small Business 2004 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in a request to the Report service (TCP 8022).

Vulnerable Configurations

Part Description Count
Application
Ipswitch
1

Exploit-Db

descriptionIPSwitch WhatsUp Small Business 2004 Report Service Directory Traversal Vulnerability. CVE-2005-1939. Remote exploit for windows platform
idEDB-ID:26464
last seen2016-02-03
modified2005-11-03
published2005-11-03
reporterDennis Rand
sourcehttps://www.exploit-db.com/download/26464/
titleIPSwitch WhatsUp Small Business 2004 Report Service Directory Traversal Vulnerability

References