CVE-2007-5694 - CVE Reference - Advisories

CVE Reference: CVE-2007-5694

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5694

Description: Absolute path traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to read arbitrary files via an absolute path in the dir parameter, a different vulnerability than CVE-2007-5491.

CVE Status: Candidate

References: SREASON http://securityreason.com/securityalert/3318 SAID Secunia Advisory: SA27503 Secunia Advisory: SA28008 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200711-05.xml DEBIAN http://www.debian.org/security/2007/dsa-1423 CONFIRM http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/482499/100/0/threaded BID 26126

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Slackware update for amarok

2.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

3.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

4.	Caudium "configvar" Insecure Temporary Files

5.	phpMyRealty "price_max" SQL Injection Vulnerability

6.	Novell eDirectory Multiple Vulnerabilities

7.	dotProject SQL Injection and Cross-Site Scripting

8.	Sun Solaris Kernel Covert Channel Security Bypass

9.	GpsDrive "geo-code" Insecure Temporary Files

10.	Joomla Community Builder Component File Inclusion