VYPR
Unrated severityNVD Advisory· Published Sep 22, 2005· Updated Jun 16, 2026

CVE-2005-3040

CVE-2005-3040

Description

Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via ".." sequences in the Template parameter.

Affected products

3
  • Tac/Vista3 versions
    cpe:2.3:a:tac:vista:3.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:tac:vista:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:tac:vista:4.0:*:*:*:*:*:*:*
    • (no CPE)range: <=4.0 (before 4.3)

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.