Directory Traversal Vulnerability in AVTECH PageR Enterprise
CVE-2008-3939

7.5HIGH

Key Information:

Vendor

Avtech

Status
Pager Enterprise
Vendor
CVE Published:
5 September 2008

What is CVE-2008-3939?

A directory traversal vulnerability exists in the web interface of AVTECH PageR Enterprise before version 5.0.7. This flaw allows remote attackers to exploit directory traversal sequences in the URI, enabling unauthorized access to read arbitrary files on the server. Such an exploit could expose sensitive data stored on the system, posing significant security risks to the integrity and confidentiality of the affected systems.

References

http://www.securityfocus.com/bid/30987
vdb-entryx_refsource_BID
http://secunia.com/advisories/31693
third-party-advisoryx_refsource_SECUNIA
http://lists.grok.org.uk/pipermail/full-disclosure/2008-S...
mailing-listx_refsource_FULLDISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.