CVE-2006-1175

Published: May 31, 2006Modified: Apr 16, 2026

4.0

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:N

Exploitability: 4.9 / Impact: 4.9

Source: NVD

Description

The WeOnlyDo! SFTP (wodSFTP) ActiveX control is marked as safe for scripting, which allows remote attackers to read and write files in arbitrary locations by accessing the control from a web page.

Affected (1)

Products: Weonlydo: Weonlydo Sftp

Weonlydo

1 product

Weonlydo Sftp

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Weonlydo Weonlydo Sftp	All versions

References (10)

http://secunia.com/advisories/20361

Source: cret@cert.org

http://www.kb.cert.org/vuls/id/378604

Source: cret@cert.org

US Government Resource

http://www.securityfocus.com/bid/18192

Source: cret@cert.org

http://www.vupen.com/english/advisories/2006/2064

Source: cret@cert.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/26752

Source: cret@cert.org

http://secunia.com/advisories/20361