Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0797

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-0797
Last Modified 05 Sep 2008 05:36:01
Published 15 Feb 2008 05:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0797

Summary

Directory traversal vulnerability in lib/download.php in iTheora 1.0 rc1 allows remote attackers to read arbitrary files via directory traversal sequences in the url parameter.

Vulnerable Systems

Application

  • Itheora 1.0


References

BID - 27788

CONFIRM - http://menguy.aymeric.free.fr/theora/news.php

SECUNIA - 28929

MISC - http://en.wikipedia.org/wiki/Talk:Itheora

XF - itheora-download-directory-traversal(40506)


Last Updated: 27 May 2016 10:46:56