← voltar
CVE-2006-0212

CVE-2006-0212

EPSS 2.5%
Directory traversal vulnerability in OBEX Push services in Toshiba Bluetooth Stack 4.00.23(T) and earlier allows remote attackers to upload arbitrary files to arbitrary remote locations specified by .. (dot dot) sequences, as demonstrated by ..\\ sequences in the RFILE argument of ussp-push.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://aps.toshiba-tro.de/bluetooth/pages/driverinfo.php?txt=sp2http://marc.info/?l=full-disclosure&m=113712413907526&w=2http://secunia.com/advisories/18437http://securitytracker.com/id?1015486http://www.digitalmunition.com/DMA%5B2006-0112a%5D.txthttp://www.osvdb.org/22380http://www.securityfocus.com/archive/1/421993/100/0/threadedhttp://www.securityfocus.com/bid/16236http://www.vupen.com/english/advisories/2006/0184