Lucene search

[email protected]CVE-2008-5315

HistoryDec 03, 2008 - 5:30 p.m.

CVE-2008-5315

2008-12-0317:30:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2008-5315

directory traversal

web interface

apple iphone

configuration web utility

vulnerability

windows

nvd

6.4 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.004 Low

EPSS

Percentile

75.0%

JSON

Directory traversal vulnerability in the web interface in Apple iPhone Configuration Web Utility 1.0 on Windows allows remote attackers to read arbitrary files via unspecified vectors.

CPENameOperatorVersion
apple:iphone_configuration_web_utilityapple iphone configuration web utilityeq1.0

CPE	Name	Operator	Version
apple:iphone_configuration_web_utility	apple iphone configuration web utility	eq	1.0

References

archives.neohapsis.com/archives/bugtraq/2008-12/0061.html

lists.grok.org.uk/pipermail/full-disclosure/2008-November/065822.html

secunia.com/advisories/32852

securityreason.com/securityalert/4681

www.securityfocus.com/archive/1/498559/100/0/threaded

www.securityfocus.com/bid/32412

exchange.xforce.ibmcloud.com/vulnerabilities/46807

6.4 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.004 Low

EPSS

Percentile

75.0%

JSON

Related for CVE-2008-5315

prion1 cvelist1 openvas2