Directory Traversal Vulnerability in GNUMP3D by GNU
CVE-2005-3123

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
30 October 2005

Summary

A directory traversal vulnerability in GNUMP3D prior to version 2.9.6 enables remote attackers to read arbitrary files by exploiting crafted sequences in the URL. This vulnerability occurs when certain patterns, such as '/.//..//////././', are processed, allowing attackers to bypass directory restrictions and gain unauthorized access to sensitive files.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.