Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6786

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6786
Last Modified 04 May 2009 12:00:00
Published 01 May 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6786

Summary

Multiple directory traversal vulnerabilities in geekigeeki.py in GeekiGeeki before 3.0 allow remote attackers to read arbitrary files via directory traversal sequences in a pagename argument in the (1) handle_edit and (2) handle_raw functions.

Vulnerable Systems

Application

  • Codewiz Geekigeeki 2.0


References

BID - 32831

OSVDB - 50719

CONFIRM - http://www.codewiz.org/wikigit/geekigeeki.git?a=commit;h=5f99f96a7a102bb8f2c491dd1e11fe8686c7c0a0

XF - geekigeeki-handleedit-directory-traversal(47375)

CONFIRM - http://www.codewiz.org/wikigit/geekigeeki.git/blobdiff/92e45c3ce9260c69b4201d877c0f2e431024a52e..5f99f96a7a102bb8f2c491dd1e11fe8686c7c0a0:/geekigeeki.py

SECUNIA - 33162


Last Updated: 27 May 2016 10:49:20