Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-1827

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-1827
Last Modified 26 Mar 2014 02:14:10
Published 26 Mar 2014 06:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-1827

Summary

The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file.

Vulnerable Systems

Application

  • Ithoughtshd 4.19


References

MISC - http://www.madirish.net/559


Last Updated: 27 May 2016 11:04:47