Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5253

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5253
Last Modified 15 Nov 2008 02:00:17
Published 06 Oct 2007 01:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5253

Summary

c32web.exe in McMurtrey/Whitaker Cart32 before 6.4 allows remote attackers to read arbitrary files via the ImageName parameter in a GetImage action, by appending a NULL byte (%00) sequence followed by an image file extension, as demonstrated by a request for a ".txt%00.gif" file. NOTE: this might be a directory traversal vulnerability.

Vulnerable Systems

Application

  • Mcmurtrey Whitaker And Associates Cart32 6.3


References

BID - 25928

BUGTRAQ - 20071004 Cart32 Arbitrary File Download Vulnerability

MISC - http://www.security-assessment.com/files/advisories/2007-10-04_Cart32_Arbitrary_File_Download.pdf

MISC - http://www.cart32.com/whatsnew.asp

OSVDB - 38580

XF - cart32-c32web-information-disclosure(36954)

SREASON - 3194

SECUNIA - 27061


Last Updated: 27 May 2016 10:46:07