|
|
CVE Reference: CVE-2006-6556 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-6556 |
|
|
Description: The eyeHome function in apps/eyeHome.eyeapp/aplic.php in EyeOS before 0.9.3-3 allows remote attackers to upload and execute arbitrary code via dangerous file extensions that are not all lowercase, which bypasses a cleansing operation. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/30844 SAID Secunia Advisory: SA23388 CONFIRM http://prdownloads.sourceforge.net/eyeos/eyeOS-0.9.3-4.tar.gz?download http://eyeos.blogspot.com/2006/12/eyeos-093-4-released-webmail-eyeapp.html BID 21639 |
|
| Return to the previous page. |
