Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5294

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2011-5294
Last Modified 02 Jan 2015 07:34:30
Published 01 Jan 2015 06:59:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-5294

Summary

The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll 14.0.0.34 in Kofax e-Transactions Sender Sendbox 2.5.0.933 allows remote attackers to write to arbitrary files via a pathname in the first argument.

Vulnerable Systems

Application

  • Kofax E-transactions Sender Sendbox 2.5.0.933


References

MISC - https://www.htbridge.com/advisory/HTB23016


Last Updated: 27 May 2016 10:57:39