Vulnerability CVE-2005-2378

Vulnerability CVE-2005-2378

Published: 2005-07-26 Modified: 2012-02-12

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
5/10	2.9/10	10/10

Affected software
Oracle -> Reports

http://marc.info/?l=bugtraq&m=112181054226520&w=2

http://marc.info/?l=bugtraq&m=112181242916757&w=2

http://securitytracker.com/id?1014525

http://securitytracker.com/id?1014527

http://www.red-database-security.com/advisory/oracle_reports_read_any_file.html

http://www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html

http://www.securityfocus.com/archive/1/422256/30/7430/threaded

http://www.vupen.com/english/advisories/2006/0323

https://exchange.xforce.ibmcloud.com/vulnerabilities/24321