Description

FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.

Remediation

References

CVE-1999-1375

Related Vulnerabilities

Oracle Application Server Other Vulnerability (CVE-2000-0169)

WordPress Plugin Share on Diaspora Cross-Site Scripting (0.7.1)

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-16943)

WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20)

WordPress Plugin Image Gallery with Slideshow 'upload-file.php' Arbitrary File Upload (1.5)

Severity

Medium

Classification

CVE-1999-1375

Tags

Missing Update Known Vulnerabilities