Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5953


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5953
Last Modified 07 Mar 2011 10:15:29
Published 23 Jan 2009 02:00:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Directory traversal vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter to the default URI.

Vulnerable Systems


  • Ktp Computer Customer Database Nil


VUPEN - ADV-2008-3292

BID - 33518

MILW0RM - 7304

SECUNIA - 32888

Last Updated: 27 May 2016 10:49:00