Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4655

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4655
Last Modified 15 Nov 2008 01:57:57
Published 04 Sep 2007 06:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4655

Summary

Multiple directory traversal vulnerabilities in CGI RESCUE Shopping Basket Professional 7.51 and earlier allow remote attackers to list arbitrary directories, and possibly read arbitrary files, via directory traversal sequences in unspecified parameters to (1) list.cgi or (2) list2.cgi.

Vulnerable Systems

Application

  • Cgi-rescue Shopping Basket Professional 7.51


References

SECUNIA - 26614

OSVDB - 40147

OSVDB - 40146

JVN - JVN#20452446

XF - shoppingbasketpro-information-disclosure(36389)

BID - 25500


Last Updated: 27 May 2016 10:45:56