Published: 31/08/2006 Updated: 20/07/2017

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 405

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Multiple directory traversal vulnerabilities in Cybozu Office prior to 6.6 Build 1.3 and Share 360 prior to 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cybozu cybozu office
cybozu share 360

Cybozu Products Arbitrary File Retrieval Vulnerability by Tan Chew Keong Release Date: 2006-08-28 Summary A vulnerability has been found in Cybozu Products When exploited, the vulnerability allows an authenticated user to retrieve arbitrary files accessible to the web server process Tested Versions * Cybuzu Office Version 65 (Build 12 ...

NVD-CWE-Other http://jvn.jp/jp/JVN%2390420168/index.html http://vuln.sg/cybozu-en.html http://cybozu.co.jp/products/dl/notice_060825/http://securitytracker.com/id?1016759 http://secunia.com/advisories/21618 http://secunia.com/advisories/21623 http://www.osvdb.org/28261 http://www.osvdb.org/28262 https://exchange.xforce.ibmcloud.com/vulnerabilities/28591 https://nvd.nist.gov https://www.exploit-db.com/exploits/2266/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4490

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect