Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request.
References
Link | Resource |
---|---|
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-01.pdf | US Government Resource |
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-04-13 03:41
Updated : 2012-04-13 03:41
NVD link : CVE-2011-4880
Mitre link : CVE-2011-4880
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
atvise
- webmi2ads