Vulnerabilities > CVE-2005-4202 - Directory Traversal vulnerability in Logisphere 0.9.9J

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
logisphere
exploit available

Summary

Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.

Vulnerable Configurations

Part Description Count
Application
Logisphere
1

Exploit-Db

  • descriptionLogiSphere 0.9.9 j URI Multiple Method Traversal Arbitrary File Access. CVE-2005-4202 . Remote exploit for windows platform
    idEDB-ID:26775
    last seen2016-02-03
    modified2005-12-12
    published2005-12-12
    reporterdr_insane
    sourcehttps://www.exploit-db.com/download/26775/
    titleLogiSphere 0.9.9 j URI Multiple Method Traversal Arbitrary File Access
  • descriptionLogiSphere 0.9.9 j viewsource.jsp source Parameter Traversal Arbitrary File Access. CVE-2005-4202. Remote exploit for windows platform
    idEDB-ID:26773
    last seen2016-02-03
    modified2005-12-12
    published2005-12-12
    reporterdr_insane
    sourcehttps://www.exploit-db.com/download/26773/
    titleLogiSphere 0.9.9 j viewsource.jsp source Parameter Traversal Arbitrary File Access
  • descriptionLogiSphere 0.9.9 j Search URL NS-query-pat Parameter Traversal Arbitrary File Access. CVE-2005-4202. Remote exploit for windows platform
    idEDB-ID:26774
    last seen2016-02-03
    modified2005-12-12
    published2005-12-12
    reporterdr_insane
    sourcehttps://www.exploit-db.com/download/26774/
    titleLogiSphere 0.9.9 j Search URL NS-query-pat Parameter Traversal Arbitrary File Access