Acritum Femitter Server 1.03 Multiple Remote Vulnerabilities Network Vulnerability

Summary

Acritum Femitter Server is prone to multiple remote vulnerabilities, including: - An authentication-bypass vulnerability - An arbitrary file-download vulnerability - A directory-traversal vulnerability - An arbitrary file-upload vulnerability Exploiting this issue will allow an attacker to gain access to sensitive information, upload arbitrary files, download arbitrary files, and execute arbitrary code within context of the affected server. Other attacks are also possible. Acritum Femitter Server 1.03 is vulnerable other versions may also be affected.

References

http://www.acritum.com/fem/index.htm
http://www.securityfocus.com/bid/39868

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

IIS IDA/IDQ Path Disclosure
Apache UserDir Sensitive Information Disclosure
httpdx Space Character Remote File Disclosure Vulnerability
IIS 5.0 Sample App reveals physical path of web root
Acritum Femitter Server 1.03 Multiple Remote Vulnerabilities

Take action and discover your vulnerabilities