Vulnerabilities > CVE-2006-7159

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

bti-tracker

btitracker

NVD

Published: 2007-03-07

Updated: 2018-10-16

Summary

Directory traversal vulnerability in include/prune_torrents.php in BTI-Tracker 1.3.2 (aka btitracker) allows remote attackers to delete arbitrary files via ".." sequences in the TORRENTSDIR parameter in a prune action.

Vulnerable Configurations

Part	Description	Count
Application	Bti-Tracker BTI Tracker BTI Tracker 1.3.2	1
Application	Btitracker Btitracker Btitracker 1.3.2	1

References

http://secunia.com/advisories/22322
http://securityreason.com/securityalert/2377
http://www.securityfocus.com/archive/1/447928/100/0/threaded
http://www.securityfocus.com/bid/20422

Vulnerabilities > CVE-2006-7159 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2006-7159"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2006-7159