CVE-2005-1367
Published May 16, 2005
Last updated 8 years ago
Overview
- Description
- Pico Server (pServ) 3.2 and earlier allows local users to read arbitrary files as the pServ user via a symlink to a file outside of the web document root.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:pico_server:pico_server:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E17AFBCF-30CD-4628-B45E-AC7868029B0D"
},
{
"criteria": "cpe:2.3:a:pico_server:pico_server:3.0_beta_3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE287C32-79D5-41C4-9DFD-A048577BBA7F"
},
{
"criteria": "cpe:2.3:a:pico_server:pico_server:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2187189B-15D7-4DB8-88C4-7C05F288BCC0"
},
{
"criteria": "cpe:2.3:a:pico_server:pico_server:3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F66A504-6100-4B59-9EBB-CE64520B1760"
}
],
"operator": "OR"
}
]
}
]