Intelligence Center » Browse All Vulnerabilities » CVE-2012-5007
Overview |
|
| Vulnerability Score |  5.0 |
| CVE Id | CVE-2012-5007 |
| Last Modified | 20 Sep 2012 02:47:35 |
| Published | 19 Sep 2012 11:46:36 |
| Confidentiality Impact |  NONE |
| Integrity Impact | PARTIAL |
| Availability Impact | NONE |
| Access Vector | NETWORK |
| Access Complexity | LOW |
| Authentication | NONE |
CVE-2012-5007
Summary
The Fill PDF module 7.x-1.x before 7.x-1.2 for Drupal allows remote attackers to write to arbitrary PDF files via unspecified vectors related to the fillpdf_merge_pdf function and incorrect arguments, a different vulnerability than CVE-2012-1625. NOTE: some of these details are obtained from third party information.
Vulnerable Systems
Application
Wizonesolutions Fillpdf 7.x-1.
Wizonesolutions Fillpdf 7.x-1.0
Wizonesolutions Fillpdf 7.x-1.1
Wizonesolutions Fillpdf 7.x-1.x
References
BID - 51288
MLIST - [oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)
SECUNIA - 47418
OSVDB - 78181
CONFIRM - http://drupal.org/node/1394428
IT Risk Posture:
Free Risk Assessment Tools
Application Scanner
Find vulnerabilities on your network.
Device Scanner
Find vulnerabilities on your network.
Patch Scanner
Find vulnerabilities on your network.
Last Updated: 27 May 2016 11:00:46
