CVE-2012-1050

Name: CVE-2012-1050
Creator: NVD / NIST
Published: 2012-02-13T19:55:01.147+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.47%

Last modified Jun 16, 2026

CVE-2012-1050 is a vulnerability of currently unknown severity. Directory traversal vulnerability in Mathopd 1.4.x and 1.5.x before 1.5p7, when configured with the * construct for mass virtual hosting, allows remote attackers to read arbitrary files via a crafted Host header.. EPSS estimates a 3.47% chance of exploitation in the next 30 days.

Description

Directory traversal vulnerability in Mathopd 1.4.x and 1.5.x before 1.5p7, when configured with the * construct for mass virtual hosting, allows remote attackers to read arbitrary files via a crafted Host header.

Metrics

EPSS Probability

3.47%

87.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-22

Affected Software

Vendor	Product	Versions	Update
Mathopd	Mathopd	>= 1.4, < 1.5	—
Mathopd	Mathopd	1.5	P5

References

http://archives.neohapsis.com/archives/bugtraq/2012-02/0025.htmlBroken Link
http://osvdb.org/78896Broken Link
http://secunia.com/advisories/47908Third Party Advisory
http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.htmlThird Party Advisory
http://www.mathopd.org/security.htmlVendor Advisory
http://www.securitytracker.com/id?1026641Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/73049Third Party Advisory, VDB Entry
http://archives.neohapsis.com/archives/bugtraq/2012-02/0025.htmlBroken Link
http://osvdb.org/78896Broken Link
http://secunia.com/advisories/47908Third Party Advisory
http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.htmlThird Party Advisory
http://www.mathopd.org/security.htmlVendor Advisory
http://www.securitytracker.com/id?1026641Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/73049Third Party Advisory, VDB Entry

Timeline

Published: Feb 13, 2012
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2012-1050?

How severe is CVE-2012-1050?

Severity scoring for CVE-2012-1050 is pending analysis. The EPSS model estimates a 3.47% probability of exploitation in the next 30 days.

How do I fix CVE-2012-1050?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-1050?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST