Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5454

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-5454
Last Modified 05 Sep 2008 05:30:49
Published 14 Oct 2007 02:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5454

Summary

Directory traversal vulnerability in index.php in PHP File Sharing System 1.5.1 allows remote attackers to list or create arbitrary directories, or delete arbitrary files, as demonstrated by listing directories via a .. (dot dot) in the cam parameter.

Vulnerable Systems

Application

  • Php File Sharing System 1.5.1


References

BID - 26065

FULLDISC - 20071013 PHP File Sharing System 1.5.1

XF - phpfilesharing-index-directory-traversal(37193)

SECUNIA - 27257


Last Updated: 27 May 2016 10:46:10