CVE-2005-3040

Medium

5/10

Summary

Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via ".." sequences in the Template parameter.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Sep 22, 2005

CVE-2005-3040

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS