CVE-2007-6317

Published: 12/12/2007 Updated: 15/10/2018

CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8

VMScore: 555

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

Multiple directory traversal vulnerabilities in BarracudaDrive Web Server prior to 3.8 allow (1) remote malicious users to read arbitrary files via certain ..\ (dot dot backslash) sequences in the URL path, or (2) remote authenticated users to delete arbitrary files or create arbitrary directories via a ..\ (dot dot backslash) sequence in the dir parameter to /drive/c/bdusers/USER/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
real time logic barracudadrive web server 3.7.2
real time logic barracudadrive web server home server 3.7.2

####################################################################### Luigi Auriemma Application: BarracudaDrive Web Server barracudaservercom/products/BarracudaDrive/ barracudaservercom/products/HomeServer/ Versions: <= 372 Platforms: Windows Bugs: A] ...

CWE-22 http://aluigi.altervista.org/adv/barradrive-adv.txt http://www.securityfocus.com/bid/26805 http://secunia.com/advisories/28032 http://securityreason.com/securityalert/3434 http://www.securityfocus.com/archive/1/484833/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/4713/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6317

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect