CVE-2007-3018 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-3018
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3018

Description: activeWeb contentserver CMS before 5.6.2964 does not limit the file-creation ability of editors who have restricted accounts, which allows these editors to create files in arbitrary directories.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/35400 SREASON http://securityreason.com/securityalert/2899 SAID Secunia Advisory: SA26063 OSVDB 39746 MISC http://www.redteam-pentesting.de/advisories/rt-sa-2007-007.php BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/473629/100/0/threaded BID 24900

Return to the previous page.