Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6528

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6528
Last Modified 26 Mar 2009 12:00:00
Published 26 Mar 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6528

Summary

NTFS TmaxSoft JEUS 5 before Fix 26 allows remote attackers to read the source code for scripts by appending ::$DATA to the URL, which accesses the alternate data stream.

Vulnerable Systems

Application

  • Tmaxsoft Jeus 5


References

XF - jeus-ads-file-disclosure(47303)

BID - 32804

BUGTRAQ - 20081214 Fwd: TmaxSoft JEUS Alternate Data Streams Vulnerability

BUGTRAQ - 20081212 TmaxSoft JEUS Alternate Data Streams Vulnerability

MILW0RM - 7442

SECUNIA - 33123


Last Updated: 27 May 2016 10:49:14