CVE-2006-2357 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-2357

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain source code for scripts via a trailing dot in a request to NmConsole/Login.asp.

Affected Software

Name	Vendor	Start Version	End Version
Whatsup_professional	Ipswitch	2006 (including)	2006 (including)
Whatsup_professional	Ipswitch	2006_premium (including)	2006_premium (including)

References

http://secunia.com/advisories/20075
http://securityreason.com/securityalert/897
http://www.securityfocus.com/archive/1/433808
http://www.vupen.com/english/advisories/2006/1787
https://exchange.xforce.ibmcloud.com/vulnerabilities/26506