CVE-2006-1771 Information
Description
Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a .. (dot dot) in the url parameter.
Reference
http://secunia.com/advisories/19566 http://www.securityfocus.com/archive/1/430707/100/0/threaded http://www.securityfocus.com/archive/1/431037/30/5580/threaded http://www.securityfocus.com/bid/17474 http://www.vupen.com/english/advisories/2006/1327 https://exchange.xforce.ibmcloud.com/vulnerabilities/25768 Directory traversal vulnerability in misc in pbcs.dll in SAXoTECH SAXoPRESS aka Saxotech Online (formerly Publicus) allows remote attackers to read arbitrary files and possibly execute arbitrary programs via a .. (dot dot) in the url parameter.
Share on: