CVE-2005-3355
GNU Gnump3d - Path Traversal via CGI Parameters and Cookie Values
Title source: llmDescription
Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values".
References (9)
Core 9
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_28_sr.html
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17647
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2489
Patch vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200511-16.xml
Various Sources x_refsource_confirm
http://www.gnu.org/software/gnump3d/ChangeLog
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15496
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17646
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17656
Patch vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-901
Scores
EPSS
0.0068
EPSS Percentile
71.7%
Details
CWE
CWE-22
Status
published
Products (8)
gnu/gnump3d
2.9
gnu/gnump3d
2.9.1
gnu/gnump3d
2.9.2
gnu/gnump3d
2.9.3
gnu/gnump3d
2.9.4
gnu/gnump3d
2.9.5
gnu/gnump3d
2.9.6
gnu/gnump3d
2.9.7
Published
Nov 18, 2005
Tracked Since
Feb 18, 2026