CVE-2007-6317 in Barracudadrive Web Server Home Serverinfo

Summary

Multiple directory traversal vulnerabilities in BarracudaDrive Web Server before 3.8 allow (1) remote attackers to read arbitrary files via certain ..\ (dot dot backslash) sequences in the URL path, or (2) remote authenticated users to delete arbitrary files or create arbitrary directories via a ..\ (dot dot backslash) sequence in the dir parameter to /drive/c/bdusers/USER/.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/11/2007

Disclosure

12/11/2007

Moderation

VulDB entry created

Entries

1: VDB-40008

CPE

ready

CWE

CWE-22 (Confirmed)

Exploit

Download

CVSS

5.4

EPSS

0.06217

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-6317
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-6317
CVE Details	https://www.cvedetails.com/cve/CVE-2007-6317/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!