Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1078

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-1078
Last Modified 24 Feb 2012 11:21:28
Published 14 Feb 2012 12:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1078

Summary

The System Utilities (sysutils) extension 1.0.3 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unspecified vectors related to improper "protection" of the "backup output directory."

Vulnerable Systems

Application

  • Claus Due Sysutils 0.10.0

  • Claus Due Sysutils 1.0.0

  • Claus Due Sysutils 1.0.1

  • Claus Due Sysutils 1.0.2

  • Claus Due Sysutils 1.0.3


References

BID - 51844

OSVDB - 78791

MISC - http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

CONFIRM - http://typo3.org/extensions/repository/view/sysutils/1.0.4/

XF - typo3-sysutils-unspecified-info-disclosure(72964)


Last Updated: 27 May 2016 10:57:26