Vulnerability Description
Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag, a related issue to CVE-2007-5461.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Jakarta Slide | 2.1 |
Related Weaknesses (CWE)
References
- http://osvdb.org/38673
- http://secunia.com/advisories/27467
- http://svn.apache.org/viewvc/jakarta/slide/trunk/src/webdav/server/org/apache/sl
- http://www.vupen.com/english/advisories/2007/3699
- https://www.exploit-db.com/exploits/4567
- http://osvdb.org/38673
- http://secunia.com/advisories/27467
- http://svn.apache.org/viewvc/jakarta/slide/trunk/src/webdav/server/org/apache/sl
- http://www.vupen.com/english/advisories/2007/3699
- https://www.exploit-db.com/exploits/4567
FAQ
What is CVE-2007-5731?
CVE-2007-5731 is a vulnerability with a CVSS score of 3.5 (LOW). Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTE...
How severe is CVE-2007-5731?
CVE-2007-5731 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5731?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Jakarta Slide.