CVE-2006-6758

Directory traversal vulnerability in Http explorer 1.02 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the URI.

Publication date: Wed, 27 Dec 2006 07:28:00 +0000

Cyber News related to CVE-2006-6758

CVE-2006-6758 - Directory traversal vulnerability in Http explorer 1.02 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the URI. ...
7 years ago

CVE-2014-6758 - The Qin Story (aka com.kongzhong.tjmammoth.android.cqqslengp) application 1.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted ...
10 years ago

CVE-2015-6758 - The CPDF_Document::GetPage function in fpdfapi/fpdf_parser/fpdf_parser_document.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, does not properly perform a cast of a dictionary object, which allows remote attackers to cause a denial of ...
8 years ago

CVE-2016-6758 - An elevation of privilege vulnerability in Qualcomm media codecs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local ...
8 years ago

CVE-2008-6758 - Cross-site request forgery (CSRF) vulnerability in cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to hijack the authentication of arbitrary users for requests that conduct persistent cross-site scripting (XSS) attacks via ...
6 years ago

CVE-2017-6758 - A vulnerability in the web framework of Cisco Unified Communications Manager 11.5(1.10000.6) could allow an authenticated, remote attacker to access arbitrary files in the context of the web root directory structure on an affected device. The ...
5 years ago

CVE-2020-6758 - A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter. ...
5 years ago

CVE-2018-6758 - The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length. ...
4 years ago

CVE-2007-6758 - Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0. ...
4 years ago

CVE-2019-6758 - This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.4.16811. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a ...
2 years ago

CVE-2013-6758 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none ...
55 years ago Tenable.com

CVE-2006-0092 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-0992, CVE-2006-0158. Reason: this candidate was intended for one issue, but a typo caused it to be associated with a Novell/Groupwise issue. In addition, this issue was a ...
55 years ago Tenable.com

CVE-2006-7224 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-7227, CVE-2005-4872, CVE-2006-7228. Reason: this candidate was SPLIT into other identifiers in order to reflect different affected versions and distinct vendor fixes. Notes: All ...
55 years ago Tenable.com

CVE-2006-5296 - PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value exceeds the record length, which allows user-assisted attackers to cause a denial of service (NULL dereference and application crash) via a crafted ...
1 year ago

CVE-2006-1530 - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due ...
6 years ago

CVE-2006-1529 - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due ...
6 years ago

CVE-2006-1723 - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due ...
6 years ago

CVE-2006-1531 - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due ...
6 years ago

CVE-2006-5424 - Unspecified vulnerability in Justsystem Ichitaro 2006, 2006 trial version, and Government 2006 allows remote attackers to execute arbitrary code via a modified document, possibly because of a buffer overflow, a different vulnerability than ...
7 years ago

CVE-2006-6653 - The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which ...
13 years ago

CVE-2006-0264 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-0259. Reason: This candidate is subsumed by CVE-2006-0259. An error during initial CVE analysis used the wrong set of affected versions for "DB10". Notes: All CVE users ...
55 years ago Tenable.com

CVE-2007-0913 - Unspecified vulnerability in Microsoft Powerpoint allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as exploited by Trojan.PPDropper.G. NOTE: as of 20070213, it is not clear whether this is the same issue as ...
16 years ago

CVE-2007-4168 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-4168. Reason: This candidate is a duplicate of CVE-2006-4168. It was inadvertently used in a vendor advisory when the "2006" year was intended. Notes: All CVE users ...
55 years ago Tenable.com

CVE-2006-7084 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-7083. Reason: This candidate is a duplicate of CVE-2006-7083. Notes: All CVE users should reference CVE-2006-7083 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2006-6362 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5873. Reason: This candidate is a duplicate of CVE-2006-5873. Notes: All CVE users should reference CVE-2006-5873 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

Latest Cyber News

Wireshark 4.4.4 Released With Fix for Vulnerability That Triggers DoS Attack - 1 hour ago
Hackers Exploited Confluence Server Vulnerability To Deploy LockBit Ransomware - 1 hour ago
Parallels Desktop 0-Day Vulnerability Gain Root Privileges - PoC Released - 2 hours ago
DeepSeek Unveils FlashMLA, A Decoding Kernel That’s Make Things Blazingly Fast - 2 hours ago
Exim Mail Transfer Vulnerability Let Attackers Inject Malicious SQL Queries - 2 hours ago
PoC Exploit Released for F5 BIG-IP Command Injection Vulnerability - 2 hours ago
Google Unveils Quantum-Safe Digital Signatures in Cloud KMS - 2 hours ago
Nagios XI Vulnerability Allows Unauthenticated Users to View Other User Details & Email - 3 hours ago
Fluent Bit 0-day Vulnerabilities Exposes Billions of Production Environments to Cyber Attacks - 3 hours ago
UniFi Protect Camera Vulnerability Allows Remote Code Execution Attacks - 4 hours ago
CVE-2025-1594 - 13 hours ago
CVE-2025-1593 - 14 hours ago
CVE-2025-1592 - 14 hours ago
CVE-2025-1591 - 15 hours ago
CVE-2025-1590 - 15 hours ago
CVE-2025-1589 - 16 hours ago
10 Best Ransomware Protection Tools - 2025 - 16 hours ago
10 Best Email Security Gateways in 2025 - 17 hours ago
CVE-2025-1467 - 18 hours ago
CVE-2025-1588 - 18 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
Kimsuky - 1 year ago
23andMe - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

Wireshark 4.4.4 Released With Fix for Vulnerability That Triggers DoS Attack - 1 hour ago
Hackers Exploited Confluence Server Vulnerability To Deploy LockBit Ransomware - 1 hour ago
Parallels Desktop 0-Day Vulnerability Gain Root Privileges - PoC Released - 2 hours ago
DeepSeek Unveils FlashMLA, A Decoding Kernel That’s Make Things Blazingly Fast - 2 hours ago
Exim Mail Transfer Vulnerability Let Attackers Inject Malicious SQL Queries - 2 hours ago
PoC Exploit Released for F5 BIG-IP Command Injection Vulnerability - 2 hours ago
Google Unveils Quantum-Safe Digital Signatures in Cloud KMS - 2 hours ago
Nagios XI Vulnerability Allows Unauthenticated Users to View Other User Details & Email - 3 hours ago
Fluent Bit 0-day Vulnerabilities Exposes Billions of Production Environments to Cyber Attacks - 3 hours ago
UniFi Protect Camera Vulnerability Allows Remote Code Execution Attacks - 4 hours ago
CVE-2025-1575 - 1 day ago
CVE-2025-1576 - 1 day ago
CVE-2024-13728 - 1 day ago
CVE-2025-1577 - 1 day ago
CVE-2025-1578 - 1 day ago
CVE-2025-1579 - 1 day ago
CVE-2025-1580 - 1 day ago
CVE-2025-1581 - 23 hours ago
CVE-2025-1582 - 22 hours ago
CVE-2025-1583 - 22 hours ago