MidnightBSD

Advisories for digicraft_software

CVE-2004-2184 MEDIUM

Directory traversal vulnerability in Digicraft Yak! server 2.0 through 2.1.2 allows remote attackers to read or write arbitrary files via "../" or "..\" sequences in commands such as (1) dir or (2) put.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
digicraft_software yak 2.0.1
digicraft_software yak 2.0.2
digicraft_software yak 2.1.1
digicraft_software yak 2.1.2
digicraft_software yak 2.1.0
digicraft_software yak 2.0