Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5867


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5867
Last Modified 05 Feb 2009 01:52:35
Published 07 Jan 2009 03:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Directory traversal vulnerability in Yerba SACphp 6.3 allows remote attackers to read arbitrary files, and possibly have other impact, via directory traversal sequences in the mod field contained in the base64-encoded SID parameter to an unspecified component. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • Yerba 6.3


XF - yerbasacphp-index-file-include(45733)

BID - 31619

SECUNIA - 32093

Last Updated: 27 May 2016 10:48:58