1. CVE-Search
  2. CVE-2006-4371
ID CVE-2006-4371
Summary Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated global administrators to read arbitrary files via a .. (dot dot) in the file parameter to (1) logfile_view.wdm and (2) configfile_view.wdm.
References
Vulnerable Configurations
  • cpe:2.3:a:alt-n:webadmin:3.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:alt-n:webadmin:3.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:alt-n:webadmin:3.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:alt-n:webadmin:3.2.4:*:*:*:*:*:*:*
CVSS
Base: 4.0 (as of 17-10-2018 - 21:36)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:S/C:P/I:N/A:N
refmap via4
bid 19620
bugtraq 20060821 TTG0601 - Alt-N WebAdmin Multiple Vulnerabilities
confirm http://files.altn.com/WebAdmin/Release/RelNotes_en.txt
fulldisc 20060821 TTG0601 - Alt-N WebAdmin Multiple Vulnerabilities
osvdb
  • 28122
  • 28123
secunia 21558
sreason 1455
vupen ADV-2006-3333
xf webadmin-multiple-directory-traversal(28488)
Last major update 17-10-2018 - 21:36
Published 26-08-2006 - 21:04
Last modified 17-10-2018 - 21:36
Back to Top