Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5491

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2007-5491
Last Modified 07 Mar 2011 10:00:47
Published 17 Oct 2007 03:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2007-5491

Summary

Directory traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter.

Vulnerable Systems

Application

  • Sitebar 3.3.8


References

CONFIRM - https://bugs.gentoo.org/show_bug.cgi?id=195810

VUPEN - ADV-2007-3768

BID - 26126

GENTOO - GLSA-200711-05

DEBIAN - DSA-1423

MISC - http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup

SECUNIA - 28008

SECUNIA - 27503


Last Updated: 27 May 2016 10:46:12