Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0395

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-0395
Last Modified 05 Sep 2008 05:34:57
Published 23 Jan 2008 07:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0395

Summary

Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php, which prints the contents of the $_SERVER superglobal.

Vulnerable Systems

Application

  • Kayako Supportsuite 3.11.01


References

MISC - http://www.waraxe.us/advisory-63.html

BUGTRAQ - 20080121 [waraxe-2008-SA#063] - Information Leakage in Kayako SupportSuite 3.11.01

SECUNIA - 28613

SREASON - 3573


Last Updated: 27 May 2016 10:46:47