JVNDB-2006-000643

[Japanese]
JVNDB-2006-000643
04WebServer directory traversal vulnerability
Overview
04WebServer, an open source web server, contains a vulnerability allowing directory traversal bypassing user authentication.
CVSS Severity (What is CVSS?)
CVSS V2 Severity: Base Metrics 5.0 (Medium) [IPA Score] Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
Affected Products

Soft3304 04WebServer v1.83 and earlier

Impact
A remote attacker could bypass a user authentication and view server files.
Solution

Vendor Information
Soft3304 04WebServer Security Information : v1.84 (Japanese)
CWE (What is CWE?)

CVE (What is CVE?)
CVE-2006-4200
References
JVN : JVN#27428836 National Vulnerability Database (NVD) : CVE-2006-4200 Secunia Advisory : SA21504 SecurityFocus : 19496 ISS X-Force Database : 28355
Revision History
[2008/05/21] Web page published

04WebServer directory traversal vulnerability