Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5867

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5867
Last Modified 05 Feb 2009 01:52:35
Published 07 Jan 2009 03:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5867

Summary

Directory traversal vulnerability in Yerba SACphp 6.3 allows remote attackers to read arbitrary files, and possibly have other impact, via directory traversal sequences in the mod field contained in the base64-encoded SID parameter to an unspecified component. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Yerba 6.3


References

XF - yerbasacphp-index-file-include(45733)

BID - 31619

SECUNIA - 32093


Last Updated: 27 May 2016 10:48:58