Vulnerabilities > CVE-2005-3468 - Directory Traversal vulnerability in F-Secure Anti-Virus and Internet Gatekeeper

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

f-secure

NVD

Published: 2005-11-02

Updated: 2011-03-08

Summary

Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files.

Vulnerable Configurations

Part	Description	Count
Application	F-Secure F Secure F Secure Anti Virus 6.40 F Secure Internet Gatekeeper 6.4 F Secure Internet Gatekeeper 6.41 F Secure Internet Gatekeeper 6.42	4

References

http://secunia.com/advisories/17361
http://securitytracker.com/id?1015142
http://securitytracker.com/id?1015143
http://www.f-secure.com/security/fsc-2005-2.shtml
http://www.securityfocus.com/bid/15284
http://www.vupen.com/english/advisories/2005/2277