CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2891

WebArchiveX.dll 5.5.0.76 installed before September 6th, 2005 is marked safe for scripting by default, which allows remote attackers to read or write to arbitrary files via the (1) MakeArchive or (2) MakeArchiveStr methods.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.3%

CVSS Severity

CVSS v2 Score 6.4

References

http://marc.info/?l=bugtraq&m=112611388014937&w=2
http://secunia.com/advisories/16722/
http://security-assessment.com/Advisories/WebArchiveX_-_Unsafe_Methods_Vulnerability.pdf
http://www.securityfocus.com/bid/14760
http://www.securitytracker.com/alerts/2005/Sep/1014867.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/22188
http://marc.info/?l=bugtraq&m=112611388014937&w=2
http://secunia.com/advisories/16722/
http://security-assessment.com/Advisories/WebArchiveX_-_Unsafe_Methods_Vulnerability.pdf
http://www.securityfocus.com/bid/14760
http://www.securitytracker.com/alerts/2005/Sep/1014867.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/22188

Products affected by CVE-2005-2891

Csystems » Webarchivex » Version: 5.5.0.76

cpe:2.3:a:csystems:webarchivex:5.5.0.76

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2891

Products

Pricing

Contact Us