RSS   Vulnerabilities for 'Vgw4 8 telephony gateway'   RSS

2004-12-31
 
CVE-2004-1814

 

 
Directory traversal vulnerability in VocalTec VGW4/8 Gateway 8.0 allows remote attackers to read protected files via .. (dot dot) sequences in an HTTP request, as demonstrated using home.asp.

 
 
CVE-2004-1813

 

 
VocalTec VGW4/8 Gateway 8.0 allows remote attackers to bypass authentication via an HTTP request to home.asp with a trailing slash (/).

 

 >>> Vendor: Vocaltec 3 Products
Vgw4 8 telephony gateway
Vgw120 telephony gateway
Vgw480 telephony gateway


Copyright 2019, cxsecurity.com

 

Back to Top