CVE-2010-2269
Accoria Rock Web Server 1.4.7 - Path Traversal via loadstatic.cgi name Parameter
Title source: llmDescription
Directory traversal vulnerability in loadstatic.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7 allows remote attackers to read arbitrary files via a .. (dot dot) in the name parameter.
References (2)
Core 2
Core References
Exploit x_refsource_misc
http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/245081
Scores
EPSS
0.0174
EPSS Percentile
75.0%
Details
CWE
CWE-22
Status
published
Products (1)
accoria/rock_web_server
1.4.7
Published
Jun 15, 2010
Tracked Since
Feb 18, 2026