CVE-2011-5058

Description

The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory using \ (backslash) characters in an HTTP GET request.

CVSS Version 2.0

nvd
CVE ID: CVE-2011-5058
Base Score: 6.4
Base Severity: MEDIUM
Vector String:AV:N/AC:L/Au:N/C:N/I:P/A:P

Refrence: NVD

Description​

Description