Edgewall Software Trac Unauthorized File Upload/Download Vulnerability

Bugtraq ID: 13990
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Jun 20 2005 12:00AM
Updated: Jun 20 2005 12:00AM
Credit: Discovery is credited to Stefan Esser <sesser@hardened-php.net> with Happy Python Hackers Project.
Vulnerable: Gentoo Linux
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.8.1
- Debian Linux 3.1 sparc
 - Debian Linux 3.1 s/390
 - Debian Linux 3.1 ppc
 - Debian Linux 3.1 mipsel
 - Debian Linux 3.1 mips
 - Debian Linux 3.1 m68k
 - Debian Linux 3.1 ia-64
 - Debian Linux 3.1 ia-32
 - Debian Linux 3.1 hppa
 - Debian Linux 3.1 arm
 - Debian Linux 3.1 alpha
 - Debian Linux 3.1
Edgewall Software Trac 0.7.1
Not Vulnerable: Edgewall Software Trac 0.8.4


 

Privacy Statement
Copyright 2010, SecurityFocus