CVE-2005-0287

Description

Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.

Affected products

• bottomline / webseries_payment_application4.0 – 4.0

References

• MISChttp://securitytracker.com/id?1012854
• MAILING_LISThttp://marc.info/?l=bugtraq&m=110548383812462&w=2
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/18862
• VENDOR_ADVISORYhttp://secunia.com/advisories/13821