Directory Traversal Vulnerability in GNU Gnump3d
CVE-2005-3355

Currently unrated

Key Information:

Vendor: Gnu
Status: Gnump3d
Vendor: CVE Published:; 18 November 2005

Summary

A directory traversal vulnerability in GNU Gnump3d versions prior to 2.9.8 allows attackers to exploit CGI parameters and cookie values. This issue may lead to unauthorized access to sensitive file system paths, enabling the potential retrieval of files not intended to be accessed. Due to the nature of the vulnerability, it is crucial for users to update their installations to the patched versions to ensure their systems are secure.

References

http://www.novell.com/linux/security/advisories/2005_28_s...

vendor-advisoryx_refsource_SUSE

http://secunia.com/advisories/17647

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2005/2489

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Nov 18, 2005
Vulnerability Reserved
Oct 27, 2005