Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5645

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-5645
Last Modified 07 Mar 2011 10:14:53
Published 17 Dec 2008 01:30:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5645

Summary

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request.

Vulnerable Systems

Application

  • Orb Networks Orb 2.0.1014

  • Orb Networks Orb 2.00.0930

  • Orb Networks Orb 2.00.0989

  • Orb Networks Orb 2.00.1014

  • Orb Networks Orb 2.00.1084

  • Orb Networks Orb 2.01.0008

  • Orb Networks Orb 2.01.0013

  • Orb Networks Orb 2.01.0015

  • Orb Networks Orb 2.01.0017


References

BID - 32187

XF - orb-unspecified-directory-traversal(46461)

VUPEN - ADV-2008-3082

SREASON - 4773

SECUNIA - 32592

FULLDISC - 20081106 DDIVRT-2008-17 Orb Directory Traversal


Last Updated: 27 May 2016 10:48:52