Directory Traversal Vulnerability in GNUMP3D by GNU
CVE-2005-3123
Currently unrated
Summary
A directory traversal vulnerability in GNUMP3D prior to version 2.9.6 enables remote attackers to read arbitrary files by exploiting crafted sequences in the URL. This vulnerability occurs when certain patterns, such as '/.//..//////././', are processed, allowing attackers to bypass directory restrictions and gain unauthorized access to sensitive files.
References
Timeline
Vulnerability published
Vulnerability Reserved