CVE-2009-3068
CVE-2009-3068
Unrestricted file upload vulnerability in the RoboHelpServer Servlet (robohelp/server) in Adobe RoboHelp Server 8 allows remote attackers to execute arbitrary code by uploading a Java Archive (.jsp) file during a PUBLISH action, then accessing it via a direct request to the file in the robohelp/robo/reserved/web directory under its sessionid subdirectory, as demonstrated by the vd_adobe module in VulnDisco Pack Professional 8.7 through 8.11.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/33209unverifiedexploitdbwww.exploit-db.com/exploits/16789unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://blogs.adobe.com/psirt/2009/09/potential_robohelp_server_8_is.htmlhttp://intevydis.com/vd-list.shtmlhttp://secunia.com/advisories/36467http://twitter.com/elegerov/statuses/3727947465http://twitter.com/elegerov/statuses/3737538715http://twitter.com/elegerov/statuses/3737725344http://www.adobe.com/support/security/bulletins/apsb09-14.htmlhttp://www.intevydis.com/blog/?p=26http://www.intevydis.com/blog/?p=69http://www.securityfocus.com/archive/1/506687/100/0/threadedhttp://www.securityfocus.com/bid/36245http://www.zerodayinitiative.com/advisories/ZDI-09-066