CVE: CVE-2005-3123

Export to Word

Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".." and "//" sequences are removed.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.01258
Percentile: 0.78514

CVSS Scoring

CVSS v2 Score: 5.0

Severity:

Affected Products

cpe:2.3:a:gnu:gnump3d:2.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnump3d:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnump3d:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnump3d:2.9.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnump3d:2.9.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnump3d:2.9.5:*:*:*:*:*:*:*

← Back to Home