Description
Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and earlier allows remote attackers to read arbitrary files via a .. in the page parameter of the show command.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2004-2245 | Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and earlier allows remote attackers to read arbitrary files via a .. in the page parameter of the show command. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-08T01:22:13.765Z
Reserved: 2005-07-17T00:00:00.000Z
Link: CVE-2004-2253
No data.
Status : Modified
Published: 2004-12-31T05:00:00.000
Modified: 2026-06-16T22:09:18.870
Link: CVE-2004-2253
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD