ByteOS Network

CVE Vulnerability Details :

CVE-2008-3564

PUBLISHED

More Info Official Page

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-10 Aug, 2008 | 20:00

Updated At-07 Aug, 2024 | 09:45

▼CVE Numbering Authority (CNA)

Multiple directory traversal vulnerabilities in index.php in Dayfox Blog 4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) p, (2) cat, and (3) archive parameters. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

References

Hyperlink	Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/44203	vdb-entry x_refsource_XF
https://www.exploit-db.com/exploits/6203	exploit x_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/30538	vdb-entry x_refsource_BID
http://securityreason.com/securityalert/4122	third-party-advisory x_refsource_SREASON

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/44203	vdb-entry x_refsource_XF x_transferred
https://www.exploit-db.com/exploits/6203	exploit x_refsource_EXPLOIT-DB x_transferred
http://www.securityfocus.com/bid/30538	vdb-entry x_refsource_BID x_transferred
http://securityreason.com/securityalert/4122	third-party-advisory x_refsource_SREASON x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References