Vulnerability Details CVE-2006-3885
Directory traversal vulnerability in Check Point Firewall-1 R55W before HFA03 allows remote attackers to read arbitrary files via an encoded .. (dot dot) in the URL on TCP port 18264.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/21200
- http://securityreason.com/securityalert/1290
- http://securitytracker.com/id?1016563
- http://www.sec-tec.co.uk/vulnerability/r55w_directory_traversal.html
- http://www.securityfocus.com/archive/1/440990/100/0/threaded
- http://www.securityfocus.com/archive/1/441495/100/0/threaded
- http://www.securityfocus.com/bid/19136
- http://www.vupen.com/english/advisories/2006/2965
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27937
- http://secunia.com/advisories/21200
- http://securityreason.com/securityalert/1290
- http://securitytracker.com/id?1016563
- http://www.sec-tec.co.uk/vulnerability/r55w_directory_traversal.html
- http://www.securityfocus.com/archive/1/440990/100/0/threaded
- http://www.securityfocus.com/archive/1/441495/100/0/threaded
- http://www.securityfocus.com/bid/19136
- http://www.vupen.com/english/advisories/2006/2965
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27937
Products affected by CVE-2006-3885
-
cpe:2.3:a:checkpoint:firewall-1:r55w