Vulnerability Details CVE-2008-0797
Directory traversal vulnerability in lib/download.php in iTheora 1.0 rc1 allows remote attackers to read arbitrary files via directory traversal sequences in the url parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://en.wikipedia.org/wiki/Talk:Itheora
- http://menguy.aymeric.free.fr/theora/news.php
- http://secunia.com/advisories/28929
- http://www.securityfocus.com/bid/27788
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40506
- http://en.wikipedia.org/wiki/Talk:Itheora
- http://menguy.aymeric.free.fr/theora/news.php
- http://secunia.com/advisories/28929
- http://www.securityfocus.com/bid/27788
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40506