PT-2000-1524 · Poll It · Poll It

Published

2000-07-04

·

Updated

2017-10-10

·

CVE-2000-0590

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Poll It version 2.0
Description The issue allows remote attackers to read arbitrary files by specifying the file name in the data dir parameter.
Recommendations For version 2.0, restrict access to the data dir parameter to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0590

Affected Products

Poll It