CVE-2005-1930

Directory traversal vulnerability in the Crystal Report component (rptserver.asp) in Trend Micro ServerProtect Management Console 5.58, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Server 1.1, and possibly earlier versions, allows remote attackers to read arbitrary files via the IMAGE parameter.

Published: Dec 14, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1930
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
trend_micro / serverprotect	5.58	5.58.x

http://secunia.com/advisories/18038
http://securityreason.com/securityalert/258
http://securitytracker.com/id?1015358
http://www.idefense.com/application/poi/display?id=352&type=vulnerabilities
http://www.osvdb.org/21770
http://www.securityfocus.com/bid/15867
http://www.vupen.com/english/advisories/2005/2907

Vulnerability Database

289,784

CVE-2005-1930