CVE-2000-1048 in Wingateinfo

Summary

Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack via an HTTP GET request that uses encoded characters in the URL.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Disclosure

12/11/2000

Moderation

VulDB entry created

Entries

VDB-16068 (1)

CPE

ready

CWE

CWE-22 (Confirmed)

CVSS

5.3

EPSS

0.01213

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-1048
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-1048
CVE Details	https://www.cvedetails.com/cve/CVE-2000-1048/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!