CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 4CVE-2006-4681 – IBM Director < 5.10 - 'Redirect.bat' Directory Traversal
https://notcve.org/view.php?id=CVE-2006-4681
Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the file parameter. Vulnerabilidad de atravesamiento de directorios en Redirect.bat de IBM Director anterior a 5.10 permite a un atacante remoto leer ficheros de sue elección a través de la secuencia ..(punto punto) en el parámetro file. • https://www.exploit-db.com/exploits/2320 ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdf http://secunia.com/advisories/21802 http://securitytracker.com/id?1016815 http://www.securityfocus.com/bid/19898 http://www.vupen.com/english/advisories/2006/3532 https://exchange.xforce.ibmcloud.com/vulnerabilities/28836 •
CVSS: 5.0EPSS: 0%CPEs: 10EXPL: 2CVE-2003-1017 – Macromedia Flash Player 6.0.x - Flash Cookie Predictable File Location
https://notcve.org/view.php?id=CVE-2003-1017
Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names. El Reproductor de Macromedia Flash en versiones anteriores a 7,0,19,0 almacena un fichero de datos de Flash en una localización predecible, accesible a navegadores web como Internet Explorer y Opera, lo que permite a a atacantes remotos leer ficheros restringidos mediante vulnerabilidades en navegadores web cuya explotación se basa en nombres predecibles. • https://www.exploit-db.com/exploits/23298 http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html http://www.securityfocus.com/bid/8900 https://exchange.xforce.ibmcloud.com/vulnerabilities/14013 •