PT-1999-1807 · Wwwcount · Wwwcount

Published

1999-12-31

Updated

2008-09-05

CVE-1999-1590

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: wwwcount (Count.cgi) version 2.3

Description: A directory traversal issue allows remote attackers to read arbitrary GIF files by using ".." sequences in the image parameter.

Recommendations: For version 2.3, consider restricting access to the image parameter to prevent exploitation until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-1999-1590

Wwwcount