Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7111

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-7111
Last Modified 05 Sep 2009 01:28:10
Published 28 Aug 2009 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-7111

Summary

The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 does not restrict the filenames or extensions of uploaded files, which makes it easier for remote attackers to execute arbitrary code or overwrite files by leveraging CVE-2008-7110 and CVE-2008-7109.

Vulnerable Systems

Application

  • Kyoceramita Scanner File Utility 3.3.0.1


References

XF - kyocera-utility-code-execution(53003)

BUGTRAQ - 20080826 White Wolf Labs #080826-1: Kyocera Mita Scanner File Utility (Multiple)

MISC - http://www.informit.com/guides/content.aspx?g=security&seqNum=320

SECUNIA - 31631


Last Updated: 27 May 2016 10:49:28