CVE-2008-7110
published 2009-08-28CVE-2008-7110: Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to upload files to arbitrary…
PriorityP348high7.8CVSS 2.0
AVNACLAuNCNICAN
EXPLOIT
EPSS
2.88%
85.1th percentile
Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to upload files to arbitrary locations via a .. (dot dot) in a request.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kyoceramita | scanner_file_utility | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r47x-v4ww-q7cr: Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3
ghsa_unreviewed·2022-05-14
CVE-2008-7110 [HIGH] CWE-22 GHSA-r47x-v4ww-q7cr: Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3
Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to upload files to arbitrary locations via a .. (dot dot) in a request.
GHSA
GHSA-h776-w786-6h4h: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3
ghsa_unreviewed·2022-05-14·CVSS 9.8
CVE-2008-7111 [CRITICAL] GHSA-h776-w786-6h4h: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3
The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 does not restrict the filenames or extensions of uploaded files, which makes it easier for remote attackers to execute arbitrary code or overwrite files by leveraging CVE-2008-7110 and CVE-2008-7109.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/31631http://www.informit.com/guides/content.aspx?g=security&seqNum=320http://www.securityfocus.com/archive/1/495772/100/0/threadedhttp://www.securityfocus.com/bid/30855https://exchange.xforce.ibmcloud.com/vulnerabilities/44718http://secunia.com/advisories/31631http://www.informit.com/guides/content.aspx?g=security&seqNum=320http://www.securityfocus.com/archive/1/495772/100/0/threadedhttp://www.securityfocus.com/bid/30855https://exchange.xforce.ibmcloud.com/vulnerabilities/44718
2009-08-28
Published