| VID |
22421 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Adobe Breeze Web server, according to its version number, has a directory traversal vulnerability. Adobe Breeze is a web-based video conferencing system. Adobe Breeze 5 Licensed Server and Breeze 5.1 Licensed Server could allow a remote attacker to traverse directories on the system. A remote attacker could exploit this vulnerability to traverse directories and read arbitrary files on the affected system.
* Note: This check solely relied on the version number of the remote Adobe Breeze Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www.adobe.com/support/security/bulletins/apsb06-16.html
http://www.frsirt.com/english/advisories/2006/4002
http://securitytracker.com/alerts/2006/Oct/1017039.html
http://secunia.com/advisories/22327
* Platforms Affected:
Adobe Breeze versions 5 and 5.1
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate patch (Breeze 5.1 SP2) for your system, as described in Adobe Security Bulletin Document APSB06-16 at http://www.adobe.com/support/security/bulletins/apsb06-16.html |
| Related URL |
CVE-2006-5200 (CVE) |
| Related URL |
20438 (SecurityFocus) |
| Related URL |
29444 (ISS) |
|
