Vulnerability in N/a
CVE-2004-1857
Directory traversal vulnerability in setinfo.hts in HP Web Jetadmin 7.5.2546 allows remote authenticated attackers to read arbitrary files via a .. (dot dot) in the setinclude parameter.
EPSS: 0.682 (98.6th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- SSRT4700 (x_refsource_HP, vendor-advisory)
- 20040324 HP Web JetAdmin vulnerabilities. (mailing-list, x_refsource_BUGTRAQ)
- 9972 (vdb-entry, x_refsource_BID)
- hp-jetadmin-setinfo-directory-traversal(15606) (vdb-entry, x_refsource_XF)