CVE-2008-2241 - CVE Reference - Advisories

CVE Reference: CVE-2008-2241

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2241

Description: Directory traversal vulnerability in caloggerd in CA BrightStor ARCServe Backup 11.0, 11.1, and 11.5 allows remote attackers to append arbitrary data to arbitrary files via directory traversal sequences in unspecified input fields, which are used in log messages. NOTE: this can be leveraged for code execution in many installation environments by writing to a startup file or configuration file.

CVE Status: Candidate

References: MISC http://www.zerodayinitiative.com/advisories/ZDI-08-027/ CONFIRM BID 29283

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

2.	Joomla Community Builder Component File Inclusion

3.	Novell eDirectory Multiple Vulnerabilities

4.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

5.	dotProject SQL Injection and Cross-Site Scripting

6.	Slackware update for amarok

7.	Caudium "configvar" Insecure Temporary Files

8.	phpMyRealty "price_max" SQL Injection Vulnerability

9.	GpsDrive "geo-code" Insecure Temporary Files

10.	Adium MSN SLP Message Integer Overflow Vulnerabilities