CVE Daily

CVE-2004-2380

Directory traversal vulnerability in postfile.exe for Twilight Utilities Web Ser...

Medium CVSS 5.0

Overview

Directory traversal vulnerability in postfile.exe for Twilight Utilities Web Server 2.0.0.0 allows remote attackers to write arbitrary files via a .. (dot dot) in the attfile parameter.

CWE: N/A Published: 2004-12-31T05:00:00.000
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 5.0 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags