Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5311

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-5311
Last Modified 07 Mar 2011 10:00:29
Published 09 Oct 2007 05:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5311

Summary

Directory traversal vulnerability in backend/admin-functions.php in TorrentTrader Classic Edition 1.07 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ss_uri parameter.

Vulnerable Systems

Application

  • Torrenttrader 1.07


References

XF - torrenttrader-adminfunctions-file-include(37004)

VUPEN - ADV-2007-3451

BUGTRAQ - 20071008 TorrentTrader Classic Mutiple Remote vulnerabilities

MILW0RM - 4500

SECUNIA - 27109

OSVDB - 37652

SREASON - 3207


Last Updated: 27 May 2016 10:46:08