Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7109

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-7109
Last Modified 05 Sep 2009 01:28:10
Published 28 Aug 2009 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7109

Summary

The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to bypass authorization and upload arbitrary files to the client system via a modified program that does not prompt the user for a password.

Vulnerable Systems

Application

  • Kyoceramita Scanner File Utility 3.3.0.1


References

XF - kyocera-scanner-program-file-upload(53004)

XF - kmscanner-requests-file-upload(44717)

BID - 30855

BUGTRAQ - 20080826 White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple)

MISC - http://www.informit.com/guides/content.aspx?g=security&seqNum=320

SECUNIA - 31631


Last Updated: 27 May 2016 10:49:28