CVE-2000-0332
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Published May 3, 2000
Updated: Nov 7, 2023
Summary
CVE-2000-0332 is a vulnerability affecting the UltraBoard CGI scripts, versions 1.6, where the UltraBoard.pl and UltraBoard.cgi files allow remote attackers to read arbitrary files. This is possible due to a pathname string manipulation issue, which includes a ".." sequence and ends with a null byte. An attacker can exploit this vulnerability to access sensitive information stored on the affected system. This issue poses a significant risk as it enables unauthorized file read access, potentially leading to data exposure or further system compromises.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share