Vulnerabilities > CVE-2005-4202 - Directory Traversal vulnerability in Logisphere 0.9.9J
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description LogiSphere 0.9.9 j URI Multiple Method Traversal Arbitrary File Access. CVE-2005-4202 . Remote exploit for windows platform id EDB-ID:26775 last seen 2016-02-03 modified 2005-12-12 published 2005-12-12 reporter dr_insane source https://www.exploit-db.com/download/26775/ title LogiSphere 0.9.9 j URI Multiple Method Traversal Arbitrary File Access description LogiSphere 0.9.9 j viewsource.jsp source Parameter Traversal Arbitrary File Access. CVE-2005-4202. Remote exploit for windows platform id EDB-ID:26773 last seen 2016-02-03 modified 2005-12-12 published 2005-12-12 reporter dr_insane source https://www.exploit-db.com/download/26773/ title LogiSphere 0.9.9 j viewsource.jsp source Parameter Traversal Arbitrary File Access description LogiSphere 0.9.9 j Search URL NS-query-pat Parameter Traversal Arbitrary File Access. CVE-2005-4202. Remote exploit for windows platform id EDB-ID:26774 last seen 2016-02-03 modified 2005-12-12 published 2005-12-12 reporter dr_insane source https://www.exploit-db.com/download/26774/ title LogiSphere 0.9.9 j Search URL NS-query-pat Parameter Traversal Arbitrary File Access