Microburst.Ustorekeeper.Directory.Traversal

description-logoDescription

It indicates a directory traversal vulnerability in Microburst uStorekeeper Online Shopping System ustorekeeper.pl program.



Due to insufficient user input validation, a remote attacker can read arbitrary files on a target system by sending it a specially-crafted message.

affected-products-logoAffected Products

Microburst uStorekeeper Online Shopping System versions prior to and including 1.8.1

Impact logoImpact

Attackers can read arbitrary files on the victim system.

recomended-action-logoRecommended Actions

Apply appropriate patches or upgrade the system to the latest non-vulnerable version.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-01-10 22.472 Name:Microburst.
Ustorekeeper.
DirectoryTraversal:Microburst.
Ustorekeeper.
Directory.
Traversal
2019-04-09 14.589 Default_action:pass:drop