Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1737

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2009-1737
Last Modified 20 May 2009 12:00:00
Published 20 May 2009 03:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1737

Summary

Directory traversal vulnerability in bom.php in MyPic 2.1 allows remote attackers to list files in arbitrary directories via a .. (dot dot) in the dir parameter.

Vulnerable Systems

Application

  • Diqiye Mypic 2.1


References

XF - mypic-dir-directory-traversal(50621)

BID - 35030

OSVDB - 54565

SECUNIA - 35092

MISC - http://hi.baidu.com/hirfire/blog/item/c3c0f6dda3ca47d18d10291a.html


Last Updated: 27 May 2016 10:50:39