Directory Traversal Vulnerability in Asus Video Security Web Server
CVE-2005-3490

Currently unrated

Key Information:

Vendor: Asus
Status: Video Security Online
Vendor: CVE Published:; 4 November 2005

Summary

A directory traversal vulnerability exists in the web server component of Asus Video Security 3.5.0.0 and earlier. This security flaw allows remote attackers to manipulate the URL to access arbitrary files on the server file system using '../' or '..' sequences. Successful exploitation of this vulnerability could lead to unauthorized exposure of sensitive information stored on the server, presenting a significant risk to the integrity and confidentiality of the system.

References

http://secunia.com/advisories/17419

third-party-advisoryx_refsource_SECUNIA

http://aluigi.altervista.org/adv/asusvsbugs-adv.txt

x_refsource_MISC

http://www.securityfocus.com/bid/15281

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 4, 2005
Vulnerability Reserved
Nov 3, 2005