1. Home
  2. CVE Database
  3. CVE-2006-2902
MEDIUM · 5.0

CVE-2006-2902

Directory traversal vulnerability in Particle Links 1.2.2 might allow remote attackers to access arbitrary files via ".." sequences in an HTTP request. NOTE: it is not clear whether this issue is leg...

Vulnerability Description

Directory traversal vulnerability in Particle Links 1.2.2 might allow remote attackers to access arbitrary files via ".." sequences in an HTTP request. NOTE: it is not clear whether this issue is legitimate, as the original researcher seems unsure.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
Particle SoftParticle Links1.2.2

References

FAQ

What is CVE-2006-2902?

CVE-2006-2902 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Directory traversal vulnerability in Particle Links 1.2.2 might allow remote attackers to access arbitrary files via ".." sequences in an HTTP request. NOTE: it is not clear whether this issue is leg...

How severe is CVE-2006-2902?

CVE-2006-2902 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-2902?

Check the references section above for vendor advisories and patch information. Affected products include: Particle Soft Particle Links.