Web application abuses : Interactive Story (story.pl) < 1.4 Directory Traversal Vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.10817

Category: Web application abuses

Title: Interactive Story (story.pl) < 1.4 Directory Traversal Vulnerability

Summary: Interactive Story (story.pl) is prone to a directory traversal; vulnerability.

Description: Summary:
Interactive Story (story.pl) is prone to a directory traversal
vulnerability.

Vulnerability Impact:
An attacker may use this flaw to read arbitrary files on
this server.

Affected Software/OS:
Interactive Story (story.pl) version 1.3 is known to be
affected. Older versions might be affected as well.

Solution:
Update to version 1.4 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2001-0804
BugTraq ID: 3028
http://www.securityfocus.com/bid/3028
Bugtraq: 20010715 Interactive Story File Disclosure Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/4.3.2.7.2.20010715184257.00b20100@compumodel.com
http://www.osvdb.org/683
XForce ISS Database: interactive-story-next-directory-traversal(6843)
https://exchange.xforce.ibmcloud.com/vulnerabilities/6843

Copyright Copyright (C) 2001 Alert4Web.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.10817
Category:	Web application abuses
Title:	Interactive Story (story.pl) < 1.4 Directory Traversal Vulnerability
Summary:	Interactive Story (story.pl) is prone to a directory traversal; vulnerability.
Description:	Summary: Interactive Story (story.pl) is prone to a directory traversal vulnerability. Vulnerability Impact: An attacker may use this flaw to read arbitrary files on this server. Affected Software/OS: Interactive Story (story.pl) version 1.3 is known to be affected. Older versions might be affected as well. Solution: Update to version 1.4 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0804 BugTraq ID: 3028 http://www.securityfocus.com/bid/3028 Bugtraq: 20010715 Interactive Story File Disclosure Vulnerability (Google Search) http://www.securityfocus.com/archive/1/4.3.2.7.2.20010715184257.00b20100@compumodel.com http://www.osvdb.org/683 XForce ISS Database: interactive-story-next-directory-traversal(6843) https://exchange.xforce.ibmcloud.com/vulnerabilities/6843
Copyright	Copyright (C) 2001 Alert4Web.com