Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6322

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-6322
Last Modified 15 Nov 2008 02:04:13
Published 13 Dec 2007 02:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6322

Summary

Directory traversal vulnerability in filedownload.php in xml2owl 0.1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.

Vulnerable Systems

Application

  • Xml2owl 0.1.1


References

MILW0RM - 4729

OSVDB - 40090

XF - xml2owl-filedownload-directory-traversal(39010)

BID - 26849

SECUNIA - 28071


Last Updated: 27 May 2016 10:46:28