Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4421

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-4421
Last Modified 07 Mar 2011 10:12:25
Published 07 Oct 2008 04:00:17
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4421

Summary

Directory traversal vulnerability in MetaGauge 1.0.0.17, and probably other versions before 1.0.3.38, allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in the URL.

Vulnerable Systems

Application

  • Hammer-software Metagauge 1.0.0.17

  • Hammer-software Metagauge 1.0.0.20


References

BID - 31596

XF - metagauge-http-directory-traversal(45697)

VUPEN - ADV-2008-2747

BUGTRAQ - 20081003 MetaGauge 1.0.0.17 Directory Traversal

MILW0RM - 6686

SREASON - 4360

SECUNIA - 32094


Last Updated: 27 May 2016 10:48:30