Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6591

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6591
Last Modified 19 Aug 2009 01:24:07
Published 03 Apr 2009 02:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6591

Summary

LightNEasy "no database" (aka flat) version 1.2.2, and possibly SQLite version 1.2.2, allows remote attackers to create arbitrary files via the page parameter to (1) index.php and (2) LightNEasy.php.

Vulnerable Systems

Application

  • Lightneasy 1.2.2


References

BID - 28839

BUGTRAQ - 20080418 LightNEasy v.1.2.2 flat Multiple Vulnerabilities

SECUNIA - 29833

OSVDB - 44679

OSVDB - 44678


Last Updated: 27 May 2016 10:49:15