ID de Prueba:	1.3.6.1.4.1.25623.1.0.11079
Categoría:	Web application abuses
Título:	Snapstream PVS web directory traversal
Resumen:	It is possible to read arbitrary files on the remote; Snapstream PVS server by prepending ../../ in front on the file name.;; It may also be possible to read ../ssd.ini which contains many information on the; system (base directory, usernames & passwords).
Descripción:	Summary: It is possible to read arbitrary files on the remote Snapstream PVS server by prepending ../../ in front on the file name. It may also be possible to read ../ssd.ini which contains many information on the system (base directory, usernames & passwords). Solution: Upgrade your software or change it! CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2001-1108 BugTraq ID: 3100 http://www.securityfocus.com/bid/3100 Bugtraq: 20010726 Snapstream PVS vulnerability (Google Search) http://archives.neohapsis.com/archives/bugtraq/2001-07/0606.html http://www.osvdb.org/2080 XForce ISS Database: snapstream-dot-directory-traversal(6917) https://exchange.xforce.ibmcloud.com/vulnerabilities/6917
Copyright	Copyright (C) 2002 Michel Arboi

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.