Vocaltec » Vgw4 8 Telephony Gateway » 8.0 : Security Vulnerabilities, CVEs, CVSS score >= 5
Directory traversal vulnerability in VocalTec VGW4/8 Gateway 8.0 allows remote attackers to read protected files via .. (dot dot) sequences in an HTTP request, as demonstrated using home.asp.
Max CVSS
5.0
EPSS Score
0.38%
Published
2004-12-31
Updated
2017-07-11
VocalTec VGW4/8 Gateway 8.0 allows remote attackers to bypass authentication via an HTTP request to home.asp with a trailing slash (/).
Max CVSS
7.5
EPSS Score
2.76%
Published
2004-12-31
Updated
2017-07-11
2 vulnerabilities found