Intrusion Prevention

Cruiseworks.cws.EXE.doc.Parameter.Directory.Traversal

Description

It indicates a possible exploit of directory traversal vulnerability in CruiseWorks.
An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid attackers in further attacks.

Affected Products

Cruiseworks Cruiseworks 1.09.d
Cruiseworks Cruiseworks 1.09.c

Impact

Directory traversal

Recommended Actions

Upgrade to the latest version of CruiseWorks (1.09e or later), available from the CruiseWorks Web site.
http://www.kynos.co.jp/cruise/cws/home.shtml

CVE References

CVE-2006-5570