CVE Vulnerabilities

CVE-2004-2640

Published: Dec 31, 2004 | Modified: Jul 20, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Directory traversal vulnerability in lstat.cgi in LinuxStat before 2.3.1 allows remote attackers to read arbitrary files via (1) .. (dot dot) sequences or (2) absolute paths to the template parameter.

Affected Software

Name Vendor Start Version End Version
Linuxstat Ryszard_pydo 0.90 0.90
Linuxstat Ryszard_pydo 0.94 0.94
Linuxstat Ryszard_pydo 2.0 2.0
Linuxstat Ryszard_pydo 2.0_beta 2.0_beta
Linuxstat Ryszard_pydo 2.0_beta2 2.0_beta2
Linuxstat Ryszard_pydo 2.1 2.1
Linuxstat Ryszard_pydo 2.2 2.2
Linuxstat Ryszard_pydo 2.3 2.3

References