CVE-2008-0396
CVE-2008-0396
Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/31039não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://oliver.greyhat.de/2008/01/19/bitdefender-unauthorized-remote-file-access-vulnerability/http://secunia.com/advisories/28578http://securityreason.com/securityalert/3568https://exchange.xforce.ibmcloud.com/vulnerabilities/39802http://www.oliverkarow.de/research/bitdefender.txthttp://www.securityfocus.com/archive/1/486701/100/0/threadedhttp://www.securityfocus.com/bid/27358http://www.vupen.com/english/advisories/2008/0213