CVE-2011-4696

2014-03-0316:00:00

mitre

www.cve.org

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

21.1%

JSON

Directory traversal vulnerability in Eye-Fi Helper before 3.4.23 allows man-in-the-middle attackers to create arbitrary files via a … (dot dot) in the filesignature in a GetPhotoStatus request.

References

www.pentest.co.uk/documents/ptl-2013-01.html

www.securityfocus.com/bid/57163

exchange.xforce.ibmcloud.com/vulnerabilities/80995