CVE-2011-0678 - Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 a

CVE-2011-0678

Summary

Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm. Per: http://cwe.mitre.org/data/definitions/434.html 'CWE-434: Unrestricted Upload of File with Dangerous Type'

References

Vulnerable Configurations

cpe:2.3:a:lomtec:activeweb:3.0:*:professional:*:*:*:*:*
cpe:2.3:a:lomtec:activeweb:3.0:*:professional:*:*:*:*:*

CVSS

Base:	6.8 (as of 17-08-2017 - 01:33)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	45985
cert-vn	VU#528212
misc	http://www.exploitdevelopment.com/Vulnerabilities/2010-WEB-002.html
osvdb	70669
secunia	43031
vupen	ADV-2011-0217
xf	activeweb-easyedit-file-upload(65013)

Last major update

17-08-2017 - 01:33

Published

28-01-2011 - 21:00

Last modified

17-08-2017 - 01:33