Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6335

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-6335
Last Modified 02 Mar 2009 12:00:00
Published 27 Feb 2009 12:30:09
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6335

Summary

Directory traversal vulnerability in download.php in eMetrix Online Keyword Research Tool allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.

Vulnerable Systems

Application

  • Emetrix Online Keyword Research Tool -


References

XF - online-download-directory-traversal(47516)

BID - 32932

MILW0RM - 7524

SECUNIA - 33255


Last Updated: 27 May 2016 10:49:09