Lucene search
HistoryOct 10, 2014 - 1:55 a.m.
CVE-2014-7226
cve-2014-7226
rejetto http file server
remote code execution
file upload vulnerability
nvd
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.291 Low
EPSS
Percentile
96.9%
The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and earlier allows remote attackers to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are interpreted as executable macro symbols.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rejetto:http_file_server | rejetto http file server | le | 2.3c |
Related
zdt
zdt
HTTP File Server 2.3a, 2.3b, 2.3c - Remote Command Execution Vulnerability
2014-10-02 00:00:00
exploitpack
exploitpack
Rejetto HTTP File Server (HFS) 2.3a2.3b2.3c - Remote Command Execution
2014-10-02 00:00:00
openvas
openvas
HTTP File Server Remote Command Execution Vulnerability-01 (Jan 2016)
2016-01-05 00:00:00
packetstorm
packetstorm
HTTP File Server 2.3a / 2.3b / 2.3c Remote Command Execution
2014-10-02 00:00:00
cvelist
cvelist
CVE-2014-7226
2014-10-10 01:00:00
prion
prion
Design/Logic Flaw
2014-10-10 01:55:00
exploitdb
exploitdb
Rejetto HTTP File Server (HFS) 2.3a/2.3b/2.3c - Remote Command Execution
2014-10-02 00:00:00
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.291 Low
EPSS
Percentile
96.9%
Related for CVE-2014-7226