Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1079

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2012-1079
Last Modified 24 Feb 2012 11:21:29
Published 14 Feb 2012 12:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2012-1079

Summary

Unspecified vulnerability in the Webservices for TYPO3 (typo3_webservice) extension before 0.3.8 for TYPO3 allows remote authenticated users to execute arbitrary code via unknown vectors.

Vulnerable Systems

Application

  • Helmut Hummel Typo3 Webservice 0.3.3

  • Helmut Hummel Typo3 Webservice 0.3.4

  • Helmut Hummel Typo3 Webservice 0.3.5

  • Helmut Hummel Typo3 Webservice 0.3.6

  • Helmut Hummel Typo3 Webservice 0.3.7


References

BID - 51843

CONFIRM - http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

MISC - http://typo3.org/extensions/repository/view/typo3_webservice/0.3.8/

OSVDB - 78792

XF - typo3-webservices-unspecified-code-execution(72965)


Last Updated: 27 May 2016 10:57:26