CVE-2011-4696

CVE-2011-4696

EPSS 0.8%

Directory traversal vulnerability in Eye-Fi Helper before 3.4.23 allows man-in-the-middle attackers to create arbitrary files via a .. (dot dot) in the filesignature in a GetPhotoStatus request.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://exchange.xforce.ibmcloud.com/vulnerabilities/80995 http://www.pentest.co.uk/documents/ptl-2013-01.html http://www.securityfocus.com/bid/57163