CVE-2010-0348

Description

Directory traversal vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to read arbitrary files via unknown vectors.

Affected products

• c-3.co.jp / webcalenderc30.32
• c-3.co.jp / webcalenderc30.31 – 0.31
• c-3.co.jp / webcalenderc30.31 – 0.31

References

• MISChttp://webcal.c-3.jp/zeijakusei.html
• MISChttp://jvn.jp/en/jp/JVN22247093/index.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/38135
• MISChttp://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000003.html
• MISChttp://osvdb.org/61630