FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gforge -- directory traversal vulnerability

Affected packages
gforge < 4.0

Details

VuXML ID fe903533-ff96-4c7a-bd3e-4d40efa71897
Discovery 2005-01-20
Entry 2005-06-03

An STG Security Advisory reports:

GForge CVS module made by Dragos Moinescu and another module made by Ronald Petty have a directory traversal vulnerability. [...] malicious attackers can read arbitrary directory lists.

References

Bugtraq ID 12318
CVE Name CVE-2005-0299
Message 20050120051735.2832.qmail@www.securityfocus.com