Secunia
Login
|
|
CVE Reference: CVE-2008-1000 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-1000 |
|
|
Description: Directory traversal vulnerability in ContentServer.py in the Wiki Server in Apple Mac OS X 10.5.2 (aka Leopard) allows remote authenticated users to write arbitrary files via ".." sequences in file attachments. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/41278 ST 1019660 SAID Secunia Advisory: SA29420 MISC http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=2189 CONFIRM http://docs.info.apple.com/article.html?artnum=307562 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/489786/100/0/threaded BID 28278 APPLE http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html |
|
| Return to the previous page. |
