Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-5725
byword
ios
remote attack
arbitrary files
security vulnerability
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.0%
The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in a byword://replace URL.
Affected configurations
Node
metaclassybywordMatch2.0.0
ORmetaclassybywordMatch2.0.1
ORmetaclassybywordMatch2.0.2
ORmetaclassybywordMatch2.0.3
Related
prion
prion
Session fixation
2013-10-01 00:55:00
packetstorm
packetstorm
Byword 2.x File Overwrite
2013-09-29 00:00:00
securityvulns
securityvulns
[CVE-2013-5725] - Byword for iOS Data Destruction Vulnerability
2013-10-01 00:00:00
iOS applications multiple seucrity vulnereabilities
2013-12-30 00:00:00
cvelist
cvelist
CVE-2013-5725
2022-10-03 16:14:54
zdt
zdt
Byword 2.x File Overwrite Vulnerability
2013-10-02 00:00:00
nvd
nvd
CVE-2013-5725
2013-10-01 00:55:12
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.0%
Related for CVE-2013-5725