FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gforge -- directory traversal vulnerability

Affected packages
gforge < 4.0

Details

VuXML ID fe903533-ff96-4c7a-bd3e-4d40efa71897
Discovery 2005-01-20
Entry 2005-06-03

An STG Security Advisory reports:

GForge CVS module made by Dragos Moinescu and another module made by Ronald Petty have a directory traversal vulnerability. [...] malicious attackers can read arbitrary directory lists.

[source]

References

Bugtraq ID 12318
CVE Name CVE-2005-0299
Message 20050120051735.2832.qmail@www.securityfocus.com

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.