CVE-2005-3468

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.8%
top 25.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
F-secure F-secure Anti-virusF-secure Internet Gatekeeper
Timeline
PublishedNov 2
Latest updateMay 1

Description

Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDf-secure/internet_gatekeeper6.4, 6.41, 6.42+2

Patches

Patch: secunia.comPatch: www.f-secure.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-fvm2-26q2-hxhh: Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 62022-05-01
CVEList
CVE-2005-3468: Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 62005-11-02
CVE-2005-3468 (MEDIUM CVSS 5) | Directory traversal vulnerability i | cvebase.io