CVE-2005-4202

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-4202. PoCs published by dr_insane.

AI-analyzed exploit summary The provided text describes a directory traversal vulnerability in LogiSphere, allowing attackers to retrieve arbitrary files from the vulnerable system. It includes example URLs demonstrating the exploit but lacks executable code.

Description

Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.

Exploits (3)

exploitdb WRITEUP VERIFIED

by dr_insane · textremotewindows

https://www.exploit-db.com/exploits/26775

View Code ZIP pw:eip

The provided text describes a directory traversal vulnerability in LogiSphere, allowing attackers to retrieve arbitrary files from the vulnerable system. It includes example URLs demonstrating the exploit but lacks executable code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Theoretical

Target: LogiSphere (version not specified)

No auth needed

Prerequisites: Access to the vulnerable LogiSphere web application

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by dr_insane · textremotewindows

https://www.exploit-db.com/exploits/26773

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in LogiSphere, allowing an attacker to retrieve arbitrary files from the vulnerable system by manipulating the 'source' parameter in the URL. The provided example fetches the 'boot.ini' file, confirming the vulnerability.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: LogiSphere (version not specified)

No auth needed

Prerequisites: Network access to the vulnerable application

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by dr_insane · textremotewindows

https://www.exploit-db.com/exploits/26774

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in LogiSphere, allowing an attacker to retrieve arbitrary files from the vulnerable system by manipulating the 'NS-query-pat' parameter. The provided URL example shows how to access the 'boot.ini' file by traversing directories.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: LogiSphere (version not specified)

No auth needed

Prerequisites: Network access to the vulnerable LogiSphere instance

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/23552

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15807

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2005/2840

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17989

Various Sources x_refsource_misc

http://www.ipomonis.com/advisories/logisphere_server.zip

LogiSphere 0.9.9j - Directory Traversal via URL and Parameter Manipulation

Exploitation Summary

Description

Exploits (3)

References (5)

Scores

Details