5
CVSSv2

CVE-2013-2619

Published: 18/03/2014 Updated: 29/08/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

Directory traversal vulnerability in Aspen prior to 0.22 allows remote attackers to read arbitrary files via a .. (dot dot) to the default URI.

Affected Products

Vendor Product Versions
AspenAspen0.8

Exploits

Aspen 08 - Directory Traversal Earlier versions are also possibly vulnerable INFORMATION Product: Aspen 08 Remote-exploit: yes Vendor-URL: wwwzetadevcom/software/aspen/ Discovered by: Daniel Ricardo dos Santos CVE Request - 15/03/2013 CVE Assign - 18/03/2013 CVE Number - CVE-2013-2619 Vendor notification - 18/03/2013 Vendor reply - N ...

Mailing Lists

Aspen version 08 suffers from a directory traversal vulnerability ...