Vulnerabilities > CVE-2006-2099 - Directory Traversal vulnerability in EZB Systems Ultraiso 8.0.0.1392
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Directory traversal vulnerability in UltraISO 8.0.0.1392 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | EZB Systems UltraISO 8.0.1392 Directory Traversal Vulnerability. CVE-2006-2099. Remote exploit for windows platform |
| id | EDB-ID:27758 |
| last seen | 2016-02-03 |
| modified | 2006-04-28 |
| published | 2006-04-28 |
| reporter | Sowhat |
| source | https://www.exploit-db.com/download/27758/ |
| title | ezb systems ultraiso 8.0.1392 - Directory Traversal Vulnerability |
References
- http://secunia.com/advisories/19857
- http://securityreason.com/securityalert/815
- http://securitytracker.com/id?1016009
- http://secway.org/advisory/AD20060428.txt
- http://www.securityfocus.com/archive/1/432359/100/0/threaded
- http://www.securityfocus.com/bid/17724
- http://www.vupen.com/english/advisories/2006/1569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26140