Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6660


Vulnerability Score 6.8 6.8
CVE Id CVE-2008-6660
Last Modified 07 Apr 2009 12:00:00
Published 07 Apr 2009 03:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Unrestricted file upload vulnerability in bigdump.php in Alexey Ozerov BigDump 0.29b allows remote attackers to execute arbitrary code by uploading a file with an executable extension followed by a .sql extension, then accessing this file via a direct request. NOTE: some of these details are obtained from third party information.

Vulnerable Systems


  • Ozerov Bigdump 029b


XF - bigdump-bigdump-file-upload(46539)

BID - 32152

BUGTRAQ - 20081106 Remote access vulnerability using BigDump ver. 0.29b

Last Updated: 27 May 2016 10:49:16