Vulnerability Details CVE-2005-0950
Directory traversal vulnerability in FastStone 4in1 Browser 1.2 allows remote attackers to read arbitrary files via a (1) ... (triple dot) or (2) ..\ (dot dot backslash) in the URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=111213034206802&w=2
- http://secunia.com/advisories/14743
- http://securitytracker.com/id?1013596
- http://www.autistici.org/fdonato/advisory/FastStone4in1Browser1.2-adv.txt
- http://www.securityfocus.com/bid/12937
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19900
- http://marc.info/?l=bugtraq&m=111213034206802&w=2
- http://secunia.com/advisories/14743
- http://securitytracker.com/id?1013596
- http://www.autistici.org/fdonato/advisory/FastStone4in1Browser1.2-adv.txt
- http://www.securityfocus.com/bid/12937
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19900
Products affected by CVE-2005-0950
-
cpe:2.3:a:faststone:4in1_browser:1.2