Vulnerability Database

290,273

Total vulnerabilities in the database

CVE-2005-3040

Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via ".." sequences in the Template parameter.

  • Published: Sep 22, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-3040
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
tac / vista 3.0 3.0.x
tac / vista 4.0 4.0.x