CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5473

StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote attackers to obtain source code of sensitive files via a request containing a trailing (1) space or (2) dot, which is not properly handled by XSP.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.1%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2007-5473

Mono » Mono » Version: N/A

cpe:2.3:a:mono:mono:-
Mono » Mono » Version: 1.0

cpe:2.3:a:mono:mono:1.0
Mono » Mono » Version: 1.0.5

cpe:2.3:a:mono:mono:1.0.5
Mono » Mono » Version: 1.1.13

cpe:2.3:a:mono:mono:1.1.13
Mono » Mono » Version: 1.1.13.4

cpe:2.3:a:mono:mono:1.1.13.4
Mono » Mono » Version: 1.1.13.6

cpe:2.3:a:mono:mono:1.1.13.6
Mono » Mono » Version: 1.1.13.7

cpe:2.3:a:mono:mono:1.1.13.7
Mono » Mono » Version: 1.1.17

cpe:2.3:a:mono:mono:1.1.17
Mono » Mono » Version: 1.1.17.1

cpe:2.3:a:mono:mono:1.1.17.1
Mono » Mono » Version: 1.1.18

cpe:2.3:a:mono:mono:1.1.18
Mono » Mono » Version: 1.1.4

cpe:2.3:a:mono:mono:1.1.4
Mono » Mono » Version: 1.1.8.3

cpe:2.3:a:mono:mono:1.1.8.3
Mono » Mono » Version: 1.2.5.1

cpe:2.3:a:mono:mono:1.2.5.1
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Microsoft » Windows » Version: 1.0

cpe:2.3:o:microsoft:windows:1.0
Microsoft » Windows » Version: 2.0

cpe:2.3:o:microsoft:windows:2.0
Microsoft » Windows » Version: 2000

cpe:2.3:o:microsoft:windows:2000
Microsoft » Windows » Version: 3.0

cpe:2.3:o:microsoft:windows:3.0
Microsoft » Windows » Version: 3.1

cpe:2.3:o:microsoft:windows:3.1
Microsoft » Windows » Version: 3.11

cpe:2.3:o:microsoft:windows:3.11
Microsoft » Windows » Version: server_2008

cpe:2.3:o:microsoft:windows:server_2008
Microsoft » Windows » Version: vista

cpe:2.3:o:microsoft:windows:vista

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5473

Products

Pricing

Contact Us