Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.14246
Kategorie:Windows
Titel:Opera relative path directory traversal file corruption vulnerability
Zusammenfassung:The remote host is using Opera - an alternative web browser.; This version of Opera is vulnerable to a file corruption vulnerability.; This issue is exposed when a user is presented with a file dialog,; which will cause the creation of a temporary file.; It is possible to specify a relative path to another file on the system; using directory traversal sequences when the download dialog is displayed.; If the client user has write permissions to the attacker-specified file,; it will be corrupted.;; This could be exploited to delete sensitive files on the systems.
Beschreibung:Summary:
The remote host is using Opera - an alternative web browser.
This version of Opera is vulnerable to a file corruption vulnerability.
This issue is exposed when a user is presented with a file dialog,
which will cause the creation of a temporary file.
It is possible to specify a relative path to another file on the system
using directory traversal sequences when the download dialog is displayed.
If the client user has write permissions to the attacker-specified file,
it will be corrupted.

This could be exploited to delete sensitive files on the systems.

Solution:
Install Opera 7.23 or newer.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Querverweis: BugTraq ID: 9279
CopyrightCopyright (C) 2004 David Maciejak

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.