Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in Ada Image Server (ImgSvr) 0.6.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter to the default URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: this is probably a different issue than CVE-2004-2464. NOTE: it was later reported that 0.6.21 and earlier is also affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ADA ImgSvr Template参数远程目录遍历漏洞
Vulnerability Description
Ada Image Server是一个嵌入式WEB服务器,主要用于对图片发布进行优化处理。 Ada Image Server的实现上存在输入验证漏洞,远程攻击者可能利用此漏洞进行目录遍历攻击。 Ada Image Server没有正确地验证对template参数的输入,允许远程攻击者提交恶意请求执行目录遍历攻击,导致从受影响系统下载任意文件。
CVSS Information
N/A
Vulnerability Type
N/A