CVE-2004-0650

Description

UploadServlet in Cisco Collaboration Server (CCS) running ServletExec before 3.0E allows remote attackers to upload and execute arbitrary files via a direct call to the UploadServlet URL.

Affected Software
References

Software	From	Fixed in
newatlanta / servletexec	2.2	2.2.x
newatlanta / servletexec	3.0	3.0.x

http://secunia.com/advisories/11979/
http://www.cisco.com/warp/public/707/cisco-sa-20040630-CCS.shtml
http://www.kb.cert.org/vuls/id/718896
http://www.securityfocus.com/bid/10639
https://exchange.xforce.ibmcloud.com/vulnerabilities/16553

Severity: High

CVE: CVE-2004-0650
Published: Aug 6, 2004
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CVE-2004-0650

Description

Details

CVSS v2