Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2459

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-2459
Last Modified 05 Sep 2008 12:00:00
Published 27 May 2008 10:32:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2459

Summary

Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.

Vulnerable Systems

Application

  • Entertainmentscript 1.4.0


References

XF - entertainmentscript-page-file-include(42540)

BID - 29306

MILW0RM - 5655

SECUNIA - 30311


Last Updated: 27 May 2016 10:47:52