| Vulnerability Name: | CVE-1999-0270 (CCN-810) | ||||||||
| Assigned: | 1998-04-02 | ||||||||
| Published: | 1998-04-02 | ||||||||
| Updated: | 2018-05-03 | ||||||||
| Summary: | Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools) allows remote attackers to read arbitrary files. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | File Manipulation | ||||||||
| References: | Source: SGI Type: UNKNOWN 19980401-01-P Source: CCN Type: SGI Security Advisory 19980401-01-P3018 Performer API Search Tool 2.2 pfdispaly.cgi Vulnerability Source: CCN Type: BugTraq Mailing List, Tue, 17 Mar 1998 00:06:48 +0100 IRIX performer_tools bug Source: CCN Type: CIAC Information Bulletin I-041 Performer API Search Tool 2.2 pfdispaly.cgi Vulnerability Source: MITRE Type: CNA CVE-1999-0270 Source: CIAC Type: UNKNOWN I-041 Source: OSVDB Type: UNKNOWN 134 Source: CCN Type: OSVDB ID: 134 IRIX pfdisplay.cgi Traversal Arbitrary File Access Source: BID Type: UNKNOWN 64 Source: CCN Type: BID-64 IRIX pfdispaly.cgi Vulnerability Source: XF Type: UNKNOWN sgi-pfdispaly(810) Source: XF Type: UNKNOWN sgi-pfdispaly(810) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||