Vulnerabilities > CVE-2006-1323 - Remote Directory Traversal vulnerability in WinHKI

CVSS 5.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

webtoolmaster-software

exploit available

NVD

Published: 2006-03-20

Updated: 2018-10-18

Summary

Directory traversal vulnerability in WinHKI 1.6 and earlier allows user-assisted attackers to overwrite arbitrary files via a (1) RAR, (2) TAR, (3) ZIP, or (4) TAR.GZ archive with a file whose file name contains ".." sequences.

Vulnerable Configurations

Part	Description	Count
Application	Webtoolmaster_Software Webtoolmaster Software Winhki *	1

Exploit-Db

description	WinHKI 1.4/1.5/1.6 Remote Directory Traversal Vulnerability. CVE-2006-1323. Webapps exploit for php platform
id	EDB-ID:27450
last seen	2016-02-03
modified	2006-02-24
published	2006-02-24
reporter	[email protected]
source	https://www.exploit-db.com/download/27450/
title	WinHKI 1.4/1.5/1.6 - Remote Directory Traversal Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References