Vulnerability Details CVE-2010-0620
Directory traversal vulnerability in the SSL Service in EMC HomeBase Server 6.2.x before 6.2.3 and 6.3.x before 6.3.2 allows remote attackers to overwrite arbitrary files with any content, and consequently execute arbitrary code, via a .. (dot dot) in an unspecified parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.195
EPSS Ranking 97.0%
CVSS Severity
CVSS v2 Score 9.3
References
- http://securityreason.com/securityalert/8230
- http://www.securityfocus.com/archive/1/509723/100/0/threaded
- http://www.securityfocus.com/bid/38380
- http://www.vupen.com/english/advisories/2010/0458
- http://www.zerodayinitiative.com/advisories/ZDI-10-020/
- http://securityreason.com/securityalert/8230
- http://www.securityfocus.com/archive/1/509723/100/0/threaded
- http://www.securityfocus.com/bid/38380
- http://www.vupen.com/english/advisories/2010/0458
- http://www.zerodayinitiative.com/advisories/ZDI-10-020/
Products affected by CVE-2010-0620
-
cpe:2.3:a:emc:homebase_server:6.2
-
cpe:2.3:a:emc:homebase_server:6.3