← back
CVE-2005-1957

CVE-2005-1957

EPSS 1.6%
mtnpeak.net File Upload Manager does not properly check user authentication for certain actions, which allows remote attackers to provide a modified base64-encoded file parameter and (1) read arbitrary files via the "view" action or (2) delete arbitrary files via the del action.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2005-06/0116.htmlhttp://marc.info/?l=bugtraq&m=111868578006615&w=2http://www.osvdb.org/17435http://www.osvdb.org/20258