CVE-2004-0465
published 2004-12-31CVE-2004-0465: Directory traversal vulnerability in jretest.html in WebConnect 6.5 and 6.4.4, and possibly earlier versions, allows remote attackers to read keys within…
PriorityP431medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
12.25%
95.7th percentile
Directory traversal vulnerability in jretest.html in WebConnect 6.5 and 6.4.4, and possibly earlier versions, allows remote attackers to read keys within arbitrary INI formatted files via "..//" sequences in the WCP_USER parameter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openconnect | webconnect | — | — |
| openconnect | webconnect | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=110910838600145&w=2http://secunia.com/advisories/14006/http://www.cirt.dk/advisories/cirt-29-advisory.pdfhttp://www.kb.cert.org/vuls/id/628411http://www.kb.cert.org/vuls/id/JSHA-69HVPKhttps://exchange.xforce.ibmcloud.com/vulnerabilities/19394http://marc.info/?l=bugtraq&m=110910838600145&w=2http://secunia.com/advisories/14006/http://www.cirt.dk/advisories/cirt-29-advisory.pdfhttp://www.kb.cert.org/vuls/id/628411http://www.kb.cert.org/vuls/id/JSHA-69HVPKhttps://exchange.xforce.ibmcloud.com/vulnerabilities/19394
2004-12-31
Published