RSS   Vulnerabilities for 'PVS'   RSS

2001-07-26
 
CVE-2001-1108

 

 
Directory traversal vulnerability in SnapStream PVS 1.2a allows remote attackers to read arbitrary files via a .. (dot dot) attack in the requested URL.

 
 
CVE-2001-1107

CWE-Other
 

 
SnapStream PVS 1.2a stores its passwords in plaintext in the file SSD.ini, which could allow a remote attacker to gain privileges on the server.

 


Copyright 2024, cxsecurity.com

 

Back to Top