Lucene search
Japan Vulnerability NotesJVN:86680970HistoryJul 28, 2015 - 12:00 a.m.
JVN#86680970: Gazou BBS plus vulnerability in file upload processing
2015-07-2800:00:00
Japan Vulnerability Notes
jvn.jp
15
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
71.0%
Gazou BBS plus provided by LEMON-S PHP contains a vulnerability in the processing of file uploads.
Impact
An image file may be specially crafted to upload arbitrary HTML files.
Solution
Apply an Update
Apply the update according to the information provided by the provider.
Products Affected
- Gazou BBS plus versions prior to v2.36
Related
prion
prion
Design/Logic Flaw
2015-07-29 01:59:00
cve
cve
CVE-2015-2974
2015-07-29 01:59:03
nvd
nvd
CVE-2015-2974
2015-07-29 01:59:03
cvelist
cvelist
CVE-2015-2974
2015-07-29 01:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
71.0%
Related for JVN:86680970