Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2005-0437

Directory traversal vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to include arbitrary Perl modules via .. (dot dot) sequences in the loadplugin parameter.

PublishedMay 02, 2005, 04:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://secunia.com/advisories/14299
http://www.securityfocus.com/archive/1/390368

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

7.5

Vector String

AV:N/AC:L/Au:N/C:P/I:P/A:P

Base SeverityUnknown

Version

2.0

Attack Vector (AV)