Vulnerability CVE-2008-0252

Vulnerability CVE-2008-0252

Published: 2008-01-11 Modified: 2012-02-12

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Cherrypy -> Cherrypy

http://security.gentoo.org/glsa/glsa-200801-11.xml

http://www.cherrypy.org/changeset/1774

http://www.cherrypy.org/changeset/1775

http://www.cherrypy.org/changeset/1776

http://www.cherrypy.org/ticket/744

http://www.debian.org/security/2008/dsa-1481

http://www.securityfocus.com/archive/1/487001/100/0/threaded

http://www.securityfocus.com/bid/27181

http://www.vupen.com/english/advisories/2008/0039

https://bugs.gentoo.org/show_bug.cgi?id=204829

https://issues.rpath.com/browse/RPL-2127

https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00240.html

https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00297.html