Search
Find a vulnerability
Search criteria
2 vulnerabilities found for neronet by nero
CVE-2005-3484 (GCVE-0-2005-3484)
Vulnerability from nvd – Published: 2005-11-03 22:00 – Updated: 2024-08-07 23:17
VLAI
EPSS
VEX
Summary
Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via ".." and hex-encoded (1) slash "/" ("%2f") or (2) backslash "\" ("%5c") sequences.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://marc.info/?l=full-disclosure&m=11309600993… | mailing-listx_refsource_FULLDISC |
| http://www.securityfocus.com/bid/15288 | vdb-entryx_refsource_BID |
| http://secunia.com/advisories/17421 | third-party-advisoryx_refsource_SECUNIA |
| http://aluigi.altervista.org/adv/neronet-adv.txt | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2005/2287 | vdb-entryx_refsource_VUPEN |
Date Public
2005-11-02 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:17:22.374Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/17421"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-11-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via \"..\" and hex-encoded (1) slash \"/\" (\"%2f\") or (2) backslash \"\\\" (\"%5c\") sequences."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/17421"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-3484",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via \"..\" and hex-encoded (1) slash \"/\" (\"%2f\") or (2) backslash \"\\\" (\"%5c\") sequences."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"refsource": "FULLDISC",
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/17421"
},
{
"name": "http://aluigi.altervista.org/adv/neronet-adv.txt",
"refsource": "MISC",
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-3484",
"datePublished": "2005-11-03T22:00:00.000Z",
"dateReserved": "2005-11-03T00:00:00.000Z",
"dateUpdated": "2024-08-07T23:17:22.374Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-3484 (GCVE-0-2005-3484)
Vulnerability from cvelistv5 – Published: 2005-11-03 22:00 – Updated: 2024-08-07 23:17
VLAI
EPSS
VEX
Summary
Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via ".." and hex-encoded (1) slash "/" ("%2f") or (2) backslash "\" ("%5c") sequences.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://marc.info/?l=full-disclosure&m=11309600993… | mailing-listx_refsource_FULLDISC |
| http://www.securityfocus.com/bid/15288 | vdb-entryx_refsource_BID |
| http://secunia.com/advisories/17421 | third-party-advisoryx_refsource_SECUNIA |
| http://aluigi.altervista.org/adv/neronet-adv.txt | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2005/2287 | vdb-entryx_refsource_VUPEN |
Date Public
2005-11-02 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:17:22.374Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/17421"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-11-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via \"..\" and hex-encoded (1) slash \"/\" (\"%2f\") or (2) backslash \"\\\" (\"%5c\") sequences."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/17421"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-3484",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions (such as ZIP, AVI, JPG, TXT, and HTML) via \"..\" and hex-encoded (1) slash \"/\" (\"%2f\") or (2) backslash \"\\\" (\"%5c\") sequences."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20051102 Limited directory traversal in NeroNET 1.2.0.2",
"refsource": "FULLDISC",
"url": "http://marc.info/?l=full-disclosure\u0026m=113096009930152\u0026w=2"
},
{
"name": "15288",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/15288"
},
{
"name": "17421",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/17421"
},
{
"name": "http://aluigi.altervista.org/adv/neronet-adv.txt",
"refsource": "MISC",
"url": "http://aluigi.altervista.org/adv/neronet-adv.txt"
},
{
"name": "ADV-2005-2287",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2005/2287"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-3484",
"datePublished": "2005-11-03T22:00:00.000Z",
"dateReserved": "2005-11-03T00:00:00.000Z",
"dateUpdated": "2024-08-07T23:17:22.374Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}